Integer overflows in TRE library and musl libc leading to memory corruption via excessive states or tags

Integer overflows in TRE library and musl libc leading to memory corruption via excessive states or tags

CVE-2016-8859 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write.

Learn more about our Web Application Penetration Testing UK.