Back to search
CVE-2018-12096
Published: Jun 19, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
The liblnk_data_string_get_utf8_string_size function in liblnk_data_string.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on GitHub
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20180614 liblnk 20180419 vulns
mailing-list
x_refsource_FULLDISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now