NULL Pointer Dereference Vulnerability in FlightCrew Library

NULL Pointer Dereference Vulnerability in FlightCrew Library

CVE-2019-13032 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An issue was discovered in FlightCrew v0.9.2 and earlier. A NULL pointer dereference occurs in GetRelativePathToNcx() or GetRelativePathsToXhtmlDocuments() when a NULL pointer is passed to xc::XMLUri::isValidURI(). This affects third-party software (not Sigil) that uses FlightCrew as a library.

Learn more about our Web Application Penetration Testing UK.