The vulnerability of the ntfs_get_attribute_value function in the NTFS file system, which allows a hacker to execute arbitrary code with elevated privileges through the FUSE NTFS-3G module.

The vulnerability of the ntfsgetattributevalue function in the NTFS file system relates to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with elevated privileges using a specially created NTFS image file...

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array in NTFS-3G through 2021.8.22.

...

UBUNTU-CVE-2022-30787

An integer underflow in fuselibreaddir enables arbitrary memory read operations in NTFS-3G through 2021.8.22 when using libfuse-lite...

Tuxera NTFS-3G 安全漏洞

Tuxera NTFS-3G is an open-source, cross-platform set of drivers from Tuxera Finland for reading and writing NTFS partitions.Tuxera NTFS-3G has a security vulnerability that can be exploited by attackers to achieve heap exhaustion via a specially crafted NTFS image...

The vulnerability of the NTFS file system of the Windows operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the NTFS file system in Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

kernel: tcp: fix page frag corruption on page fault

A vulnerability was found in the Linux kernel's TCP subsystem in the tcpsendmsglocked function, which can lead to page fragment corruption during a page fault, which occurs when a TCP stream experiences nested access to the task page fragment due to a page fault while handling memory-mapped...

ntfs-3g: Out-of-bounds read in ntfs_ie_lookup()

The ntfs3g package is susceptible to an input validation flaw. When processing a crafted NTFS image there is an improper check which leads to an out of bounds read. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

ntfs-3g: Endless recursion from ntfs_attr_pwrite() triggered by an unallocated bitmap

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is system availability...

The vulnerability of the NTFS file system of the Windows operating system, which allows a perpetrator to increase their privileges

The vulnerability of the NTFS file system in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to increase their privileges...

CVE-2022-25216

An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player recently renamed PlayerFab has read-access, by means of an HTTP GET request to http://:32080/download/...

CVE-2022-25216

An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player recently renamed PlayerFab has read-access, by means of an HTTP GET request to http://:32080/download/...

Path traversal

An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player recently renamed PlayerFab has read-access, by means of an HTTP GET request to http://:32080/download/...

CVE-2022-25216

An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player recently renamed PlayerFab has read-access, by means of an HTTP GET request to http://:32080/download/...

CVE-2022-25216

DVDFab 12 Player/PlayerFab is affected by a local file inclusion (absolute path traversal) via HTTP GET to /download/. The issue allows remote attackers to download any file on the Windows filesystem readable by the running user. Root cause: traversal of local paths in the download endpoint. Affe...

The vulnerability of the file system filter driver of the Microsoft Windows operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the file system filter driver in the Microsoft Windows operating system is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability in the implementation of the ntfs_get_attribute_value function of the NTFS file system driver for the FUSE NTFS-3G module allows a malicious actor to gain unauthorized access to protected information or cause service failures.

The vulnerability of the ntfsgetattributevalue function in the NTFS file system driver for the FUSE NTFS-3G module is related to an incorrect check of the bytesinuse value. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information or cause service...

CVE-2022-21963

Windows Resilient File System ReFS Remote Code Execution Vulnerability...

Microsoft Windows Resilient File System 安全漏洞

Microsoft Windows Resilient File System ReFS is a resilient file system from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows Resilient File System ReFS. The following products and editions are affected:Windows 10 Version 1909 for 32-bit Systems,Windows 10 Version...

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_compressed_pwrite in NTFS-3G < 2021.8.22.

...

CVE-2021-43231

Windows NTFS Elevation of Privilege Vulnerability...