Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The liblnk_location_information_read_data function in liblnk_location_information.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on GitHub
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
liblnk 安全漏洞
Vulnerability Description
liblnk是一个用于访问Windows快捷方式文件(LNK)的库。 liblnk 2018-04-19及之前版本中的liblnk_location_information.c文件中的‘liblnk_location_information_read_data’函数存在安全漏洞。远程攻击者可借助特制的Lnk文件利用该漏洞造成信息泄露(基于堆的缓冲区越界读取)。
CVSS Information
N/A
Vulnerability Type
N/A