Lucene search
K

6 matches found

BDU FSTEC
BDU FSTEC
added 2023/06/20 12:0 a.m.6 views

The vulnerability of the HandleFileArg function in the XML data compression tool Xmill allows a attacker to execute arbitrary code.

The vulnerability of the HandleFileArgl function in the XML data compression tool Xmill is related to a memory boundary error during the processing of XML files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.6AI score0.00333EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/06/20 12:0 a.m.6 views

The vulnerability of the HandleFileArg function in the XML data compression tool Xmill allows a attacker to execute arbitrary code.

The vulnerability of the HandleFileArgl function in the XML data compression tool Xmill is related to a memory boundary error during the processing of XML files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.6AI score0.00333EPSS
Exploits1References6Affected Software2
OSV
OSV
added 2021/08/13 11:15 p.m.3 views

CVE-2021-21814

Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to strlen to determine the ending location of the char passed in by the user, no checks are done to see if the passed in char is longer th...

7.8CVSS7.5AI score0.00344EPSS
Exploits1References1
OSV
OSV
added 2021/08/13 11:15 p.m.5 views

CVE-2021-21813

Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to memcpy copying the path provided by the user into a staticly sized buffer without any length checks resulting in a stack-buffer overflo...

7.8CVSS7.6AI score0.00333EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/08/12 12:0 a.m.3 views

AT&T Labs Xmill 缓冲区错误漏洞

Xmill is an efficient compressor of XML data. a stack buffer overflow vulnerability exists in the command line parsing HandleFileArg function in Xmill version 0.7. An attacker could exploit the vulnerability by providing malicious input via the filepattern parameter to cause a denial of service...

7.8CVSS6AI score0.00333EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2021/08/10 12:0 a.m.6 views

PT-2021-7822 · Xmill · Xmill

Name of the Vulnerable Software and Affected Versions: Xmill version 0.7 Description: A stack-based buffer overflow issue exists in the command-line-parsing HandleFileArg functionality. The filepattern argument, which is under user control, is passed to strcpy without length checks, leading to a...

7.8CVSS8.3AI score0.00333EPSS
Exploits1References8
Rows per page
Query Builder