The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in unixODBC 2.3.5 has strncpy arguments in the wrong order, which allows attackers to cause a denial of service or possibly have unspecified other impact.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | < 14.1.5 |