Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
InfraRecorder 0.53 Denial of Service via txt File Import
Vulnerability Description
InfraRecorder 0.53 contains a denial of service vulnerability that allows local attackers to crash the application by importing a maliciously crafted text file. Attackers can create a text file containing 6000 bytes of data and import it through the Edit menu's Import function to trigger an application crash.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未经控制的内存分配
Vulnerability Title
InfraRecorder 安全漏洞
Vulnerability Description
InfraRecorder是InfraRecorder公司的一个用于刻录光盘与创建光盘映像的工具软件。 InfraRecorder 0.53版本存在安全漏洞,该漏洞源于导入恶意文本文件时存在拒绝服务,可能导致本地攻击者通过创建包含6000字节数据的文本文件并通过Edit菜单的Import功能导入触发应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A