Showing 1 - 5 of 5

Files from Webin Security Lab

First Active	2018-05-16
Last Active	2018-06-08

libfsntfs 20180420 Information Disclosure: Posted Jun 8, 2018; Authored by Webin Security Lab; The libfsntfs_attribute_read_from_mft function in libfsntfs_attribute.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted ntfs file. The libfsntfs_reparse_point_values_read_data function in libfsntfs_reparse_point_values.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted ntfs file. The libfsntfs_mft_entry_read_header function in libfsntfs_mft_entry.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted ntfs file. The libfsntfs_security_descriptor_values_free function in libfsntfs_security_descriptor_values.c in libfsntfs through 2018-04-20 allows remote attackers to cause a denial of service (double-free) via a crafted ntfs file. The libfsntfs_mft_entry_read_attributes function in libfsntfs_mft_entry.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted ntfs file.; tags | exploit, remote, denial of service, info disclosure; advisories | CVE-2018-11727, CVE-2018-11728, CVE-2018-11729, CVE-2018-11730, CVE-2018-11731; SHA-256 | d51475d526556c38315d3ad495346f228174e57aaea7b756952cb090daa26d44; Download | Favorite | View

libmobi 0.3 Information Disclosure: Posted Jun 8, 2018; Authored by Webin Security Lab; The mobi_parse_index_entry function in index.c in Libmobi 0.3 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted mobi file. The mobi_pk1_decrypt function in encryption.c in Libmobi 0.3 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted mobi file. The mobi_decode_font_resource function in util.c in Libmobi 0.3 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted mobi file.; tags | exploit, remote, denial of service, overflow, info disclosure; advisories | CVE-2018-11724, CVE-2018-11725, CVE-2018-11726; SHA-256 | 734054659817f2c6fe191be96ca9463bb463d1768291d5ec1cb547fef8c59d82; Download | Favorite | View

libpff 2018-04-28 Information Disclosure: Posted Jun 8, 2018; Authored by Webin Security Lab; The libpff_name_to_id_map_entry_read function in libpff_name_to_id_map.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted pff file.; tags | exploit, remote, overflow, info disclosure; advisories | CVE-2018-11723; SHA-256 | bb60000f6af9c141c2ef4116d6d57a18a2cf342fb2daab8cb8e5c99b583a5d0a; Download | Favorite | View

TagLib Audio Meta-Data Library 1.11.1 Information Disclosure: Posted May 29, 2018; Authored by Webin Security Lab; The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib version 1.11.1 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted audio file.; tags | advisory, remote, info disclosure; SHA-256 | aef2419e47ea6d4026994bdeff4c305d9c04fb5575c81572288b93ee7047ba9d; Download | Favorite | View

vcftools 0.1.15 Out-Of-Bounds Read / Denial Of Service / Buffer Overflow: Posted May 16, 2018; Authored by Webin Security Lab; vcftools version 0.1.15 suffers from out-of-bounds read, denial of service, buffer overflow, and use-after-free vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability; advisories | CVE-2018-11099, CVE-2018-11129, CVE-2018-11130; SHA-256 | 9eefdd1e2925e6f95ad42de0c06c5cd451572d6217a1defb026d0d90bc7f3fd8; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days