Vulnerabilities (CVE)

Filtered by vendor Liblnk Project Subscribe

Filtered by product Liblnk

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-12096	1 Liblnk Project	1 Liblnk	2018-09-01	1.9 LOW	5.5 MEDIUM
DISPUTED The liblnk_data_string_get_utf8_string_size function in liblnk_data_string.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on GitHub.
CVE-2018-12097	1 Liblnk Project	1 Liblnk	2018-09-01	1.9 LOW	5.5 MEDIUM
DISPUTED The liblnk_location_information_read_data function in liblnk_location_information.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on GitHub.
CVE-2018-12098	1 Liblnk Project	1 Liblnk	2018-09-01	1.9 LOW	5.5 MEDIUM
DISPUTED The liblnk_data_block_read function in liblnk_data_block.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on GitHub.