CVE-2025-71267

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop triggered by zero-sized ATTRLIST We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service DoS condition. A malformed NTFS image can cause an infinite loop when an...

EUVD-2025-34421

Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally...

CVE-2025-38615 fs/ntfs3: cancle set bad inode after removing name fails

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: cancle set bad inode after removing name fails The reproducer uses a file0 on a ntfs3 file system with a corrupted ilink. When renaming, the file0's inode is marked as a bad inode because the file name cannot be deleted...

The vulnerability of the NTFS file system of the Windows operating system, which allows a hacker to execute arbitrary code

The vulnerability of the NTFS file system in Windows operating systems is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code...

Microsoft Windows NTFS 缓冲区错误漏洞

Microsoft Windows NTFS is a file system from Microsoft USA that serves computer files. The file system has error warning, disk self-healing, and logging capabilities. A buffer error vulnerability exists in Microsoft Windows NTFS. The following products and editions are affected:Windows 10 Version...

AZL-53093 CVE-2024-50244 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Additional check in niclear Checking of NTFSFLAGSLOGREPLAYING added to prevent access to uninitialized bitmap during replay process...

CVE-2024-50244 fs/ntfs3: Additional check in ni_clear()

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Additional check in niclear Checking of NTFSFLAGSLOGREPLAYING added to prevent access to uninitialized bitmap during replay process...

The vulnerability of the NTFS handler in the NtfsHandler.cpp file of the 7-Zip archive viewer allows a hacker to execute arbitrary code.

The vulnerability of the NTFS handler in the NtfsHandler.cpp file of the 7-Zip archive creator is related to the possibility of buffer overflow attacks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2023-4692 Grub2: out-of-bounds write at fs/ntfs.c may lead to unsigned code execution

An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corruption. In some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a...

CVE-2023-29346

NTFS Elevation of Privilege Vulnerability...

ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array

A vulnerability was found in NTFS-3G. Incorrect validation of NTFS metadata can result in a heap-based buffer overflow when processing a crafted NTFS image file or partition...

ntfs-3g: heap-based buffer overflow in ntfsck

A vulnerability was found in NTFS-3G, specifically in the ntfsck utility. Incorrect validation of NTFS metadata can result in a heap-based buffer overflow when processing a crafted NTFS image file or partition...

PT-2022-36580 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.9.334 Description: The issue is related to an overflow when iterating ATTR RECORDs in ntfs. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior...

The vulnerability of the NTFS-3G driver set-up, which is implemented in the NTFS file system, allows a perpetrator to execute arbitrary code.

The vulnerability of the NTFS-3G driver set-up of the NTFS file system is related to errors in metadata processing. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the `ntfs_names_full_collate` function in the NTFS file system, which allows a malicious actor to execute arbitrary code with elevated privileges on the FUSE NTFS-3G module.

The vulnerability of the ntfsnamesfullcollate function in the NTFS file system is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges using a specially created NTFS image file...

UBUNTU-CVE-2022-30789

A crafted NTFS image can cause a heap-based buffer overflow in ntfschecklogclientarray in NTFS-3G through 2021.8.22...

Tuxera NTFS-3G 代码注入漏洞

Tuxera NTFS-3G is an open-source, cross-platform set of drivers from Tuxera Finland for supporting read and write NTFS partitions.A code injection vulnerability exists in Tuxera NTFS-3G, which stems from the presence of an invalid return code in fusekernmount. No detailed vulnerability details ar...

The vulnerability of the memmove function in the NTFS file system driver for the FUSE NTFS-3G module, related to integer overflow, allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the memmove function in the NTFS file system driver for the FUSE NTFS-3G module is related to integer overflow. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures through the specially created...

The vulnerability of the Windows Media Center component of the Windows operating system, which allows a hacker to gain elevated privileges

The vulnerability of the NTFS file system in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to increase their privileges...

A crafted NTFS image can trigger an out-of-bounds read caused by an invalid attribute in ntfs_attr_find_in_attrdef in NTFS-3G < 2021.8.22.

...