Incorrect Calculation of Buffer Size in stringstream

Cx28d8d81d-c124

stringstream

High

8.2/10

Summary

Stringstream is vulnerable to uninitialized buffer allocation. It allows to extract sensitive data from uninitialized memory or to cause a Denial of Service by passing in a large number, in setups where typed user input can be passed to the stream (e.g. from JSON), on Node.js 4.x and lower.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: LOW
Availability Impact: HIGH

CWE-131 - Incorrect Calculation of Buffer Size

The software does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

References

Advisory
HackerOne
Issue
Pull request

Advisory Timeline

Published Mar 03, 2017

Incorrect Calculation of Buffer Size in stringstream

Cx28d8d81d-c124

Summary

CWE-131 - Incorrect Calculation of Buffer Size

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS