3 matches found
CVE-2018-12097
The liblnklocationinformationreaddata function in liblnklocationinformation.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on...
CVE-2018-12097
The liblnklocationinformationreaddata function in liblnklocationinformation.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on...
CVE-2018-12097
The CVE affects the liblnk library: the function liblnk_location_information_read_data in liblnk_location_information.c (liblnk up to 2018-04-19) allows an attacker to cause information disclosure via a crafted .lnk file. The vulnerability is a heap-based buffer over-read. Vendors dispute the cla...