QwikSec

Security Database

CVE

CWE

Training

CVE-2021-32559

Published: Jul 6, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

An integer overflow exists in pywin32 prior to version b301 when adding an access control entry (ACE) to an access control list (ACL) that would cause the size to be greater than 65535 bytes. An attacker who successfully exploited this vulnerability could crash the vulnerable process.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/mhammond/pywin32/releases

x_refsource_MISC

https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0017/FEYE-2021-0017.md

x_refsource_MISC

https://github.com/mhammond/pywin32/issues/1700

x_refsource_MISC

https://github.com/mhammond/pywin32/pull/1701

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.