Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The libpff_name_to_id_map_entry_read function in libpff_name_to_id_map.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on GitHub
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
libyal libpff 安全漏洞
Vulnerability Description
libyal libpff是一个用于访问个人文件夹文件(PFF)和脱机文件夹文件(OFF)的库。 libyal libpff 2018-04-28及之前版本中的libpff_name_to_id_map.c文件的‘libpff_name_to_id_map_entry_read’函数存在安全漏洞。远程攻击者可借助特制的pff文件利用该漏洞造成信息泄露(基于堆的缓冲区越界读取)。
CVSS Information
N/A
Vulnerability Type
N/A