CVE-2018-7485 – unixODBC: Insecure buffer copy in SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c

https://notcve.org/view.php?id=CVE-2018-7485

26 Feb 2018 — The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in unixODBC 2.3.5 has strncpy arguments in the wrong order, which allows attackers to cause a denial of service or possibly have unspecified other impact. La función SQLWriteFileDSN en odbcinst/SQLWriteFileDSN.c en unixODBC 2.3.5 tiene argumentos strncpy en el orden equivocado. Esto permite que atacantes provoquen una denegación de servicio (DoS) u otro tipo de impacto sin especificar. An argument order confusion flaw was found in the SQLWriteFileDS... • http://www.securityfocus.com/bid/103193 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •