Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2016-8714

Description

An exploitable buffer overflow vulnerability exists in the LoadEncoding functionality of the R programming language version 3.3.0. A specially crafted R script can cause a buffer overflow resulting in a memory corruption. An attacker can send a malicious R script to trigger this vulnerability.

POC

Reference

- http://www.talosintelligence.com/reports/TALOS-2016-0227/

Github

- https://github.com/squaresLab/SemanticCrashBucketing