Back to search
CVE-2011-3631
Published: Nov 26, 2019
Modified: Aug 6, 2024
PUBLISHED
Description
Hardlink before 0.1.2 has multiple integer overflows leading to heap-based buffer overflows because of the way string lengths concatenation is done in the calculation of the required memory space to be used. A remote attacker could provide a specially-crafted directory tree and trick the local user into consolidating it, leading to hardlink executable crash or potentially arbitrary code execution with user privileges.
| Vendor | Product | Versions |
|---|---|---|
hardlink | hardlink | affected 0.3.0 |
References
https://security-tracker.debian.org/tracker/CVE-2011-3631
x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3631
x_refsource_MISC
https://access.redhat.com/security/cve/cve-2011-3631
x_refsource_MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=645516
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now