8 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-12097
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The liblnklocationinformationreaddata function in liblnklocationinformation.c in liblnk through 2018-04-19 allows remote attackers to cause an information...
Microsoft Word Remote Code Execution Vulnerability (CNVD-2020-46236)
Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A remote code execution vulnerability exists in Microsoft Word on the Android platform, which is caused by the program not handling certain files correctly. The vulnerability can be exploited...
Vulnerability of Windows operating systems, related to errors in processing .LNK file extensions, allowing a hacker to execute arbitrary code
The vulnerability of the Windows operating system is related to errors in processing files with the extension .LNK link files. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted .LNK file...
DEBIAN-CVE-2018-12098
The liblnkdatablockread function in liblnkdatablock.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on GitHub...
DEBIAN-CVE-2018-12096
The liblnkdatastringgetutf8stringsize function in liblnkdatastring.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on GitHub...
UBUNTU-CVE-2018-12097
The liblnklocationinformationreaddata function in liblnklocationinformation.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on...
PT-2018-11011 · Libyal · Liblnk
Name of the Vulnerable Software and Affected Versions: liblnk versions through 2018-04-19 Description: The issue allows remote attackers to cause an information disclosure via a crafted lnk file. This is due to a heap-based buffer over-read in the liblnk data block read function in liblnk data...
VulnCheck KEV: CVE-2017-8464
Windows Shell in multiple versions of Microsoft Windows allows local users or remote attackers to execute arbitrary code via a crafted .LNK file...