Lucene search
K

32 matches found

OSV
OSV
added 2018/12/22 12:29 a.m.1 views

UBUNTU-CVE-2018-20348

libpffitemtreecreatenode in libpffitemtree.c in libpff before experimental-20180714 allows attackers to cause a denial of service infinite recursion via a crafted file, related to libfdatatreegetnodevalue in libfdatatree.c...

5.5CVSS5.8AI score0.00431EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2018/12/22 12:0 a.m.18 views

CVE-2018-20348

libpffitemtreecreatenode in libpffitemtree.c in libpff before experimental-20180714 allows attackers to cause a denial of service infinite recursion via a crafted file, related to libfdatatreegetnodevalue in libfdatatree.c...

5.5CVSS5.3AI score0.00431EPSS
Exploits1
CVE
CVE
added 2018/12/22 12:0 a.m.49 views

CVE-2018-20348

The CVE-2018-20348 entry documents a local-denial-of-service vulnerability in libpff: specifically, libpff_item_tree_create_node in libpff_item_tree.c (before experimental-20180714) can be triggered by a crafted file, related to libfdata_tree_get_node_value in libfdata_tree.c. Exploitation would ...

5.5CVSS5.3AI score0.00431EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2018/06/20 12:0 a.m.2 views

libyal libpff Information Disclosure Vulnerability

libyal libpff is a library for accessing Personal Folder Files PFF and Offline Folder Files OFF. A security vulnerability exists in the 'libpffnametoidmapentryread' function in the libpffnametoidmap.c file in libyal libpff 2018-04-28 and earlier versions. A remote attacker can exploit this...

5.5CVSS5.3AI score0.01184EPSS
Exploits0References1
Prion
Prion
added 2018/06/19 9:29 p.m.14 views

Heap overflow

DISPUTED The libpffnametoidmapentryread function in libpffnametoidmap.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on...

1.9CVSS5.4AI score0.01184EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2018/06/19 9:29 p.m.18 views

CVE-2018-11723

The libpffnametoidmapentryread function in libpffnametoidmap.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on GitHub...

5.5CVSS6.3AI score0.01184EPSS
Exploits0References3
NVD
NVD
added 2018/06/19 9:29 p.m.15 views

CVE-2018-11723

The libpffnametoidmapentryread function in libpffnametoidmap.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on GitHub...

5.5CVSS5.4AI score0.01184EPSS
Exploits0References2
OSV
OSV
added 2018/06/19 9:29 p.m.8 views

CVE-2018-11723

The libpffnametoidmapentryread function in libpffnametoidmap.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on GitHub...

5.5CVSS5.4AI score
Exploits0References2
Debian CVE
Debian CVE
added 2018/06/19 9:0 p.m.19 views

CVE-2018-11723

The libpffnametoidmapentryread function in libpffnametoidmap.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on GitHub...

5.5CVSS5.4AI score0.01184EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2018/06/19 9:0 p.m.10 views

CVE-2018-11723

The libpffnametoidmapentryread function in libpffnametoidmap.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on GitHub...

6.7AI score0.01184EPSS
Exploits0References2
CVE
CVE
added 2018/06/19 9:0 p.m.37 views

CVE-2018-11723

The vulnerability CVE-2018-11723 affects libyal libpff (libpff_name_to_id_map_entry_read in libpff_name_to_id_map.c) through 2018-04-28. It allows a remote attacker to cause information disclosure via a crafted PFF file by triggering a heap-based buffer over-read. Public entries (SUSE, CNVD, OSV,...

5.5CVSS5.4AI score0.01184EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2018/06/19 12:0 a.m.3 views

PT-2018-10781 · Libyal · Libpff

Name of the Vulnerable Software and Affected Versions: libpff versions through 2018-04-28 Description: The issue allows remote attackers to cause an information disclosure via a crafted pff file. This is due to a heap-based buffer over-read in the libpff name to id map entry read function in libp...

5.5CVSS5.8AI score0.01184EPSS
Exploits0References10
Rows per page
Query Builder