CVE-2016-4303 vulnerability in Iperf3project and Other Products
Published on September 26, 2016

The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a non-hex character in a JSON string, which triggers a heap-based buffer overflow.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2016-4303

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2016-4303 are published in these products:

Iperf3project Iperf3

Novell Suse Package Hub Suse Linux Enterprise

OpenSuse Leap

OpenSuse

Debian Linux

Es Iperf3

Exploit Probability

EPSS

5.73%

Percentile

90.39%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2016-4303 vulnerability in Iperf3project and Other ProductsPublished on September 26, 2016

Products Associated with CVE-2016-4303

Exploit Probability

CVE-2016-4303 vulnerability in Iperf3project and Other Products
Published on September 26, 2016