VCFTools Prior to Version 0.1.15: Use-After-Free Vulnerability in header::add_FILTER_descriptor Method

VCFTools Prior to Version 0.1.15: Use-After-Free Vulnerability in header::add_FILTER_descriptor Method

CVE-2019-1010127 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact (eg. code execution or information disclosure). The component is: The header::add_FILTER_descriptor method in header.cpp. The attack vector is: The victim must open a specially crafted VCF file.

Learn more about our Web Application Penetration Testing UK.