NotCVE - vendor:"Att" product:"Xmill" version:"0.7"

Page 2 of 13 results (0.006 seconds)

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1

CVE-2021-21812

https://notcve.org/view.php?id=CVE-2021-21812

13 Aug 2021 — A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT&T Labs’ Xmill 0.7. Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to strcpy copying the path provided by the user into a static sized buffer without any length checks resulting in a stack-buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities. Se prese... • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1280 • CWE-787: Out-of-bounds Write •

CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 1

CVE-2021-21829

https://notcve.org/view.php?id=CVE-2021-21829

13 Aug 2021 — A heap-based buffer overflow vulnerability exists in the XML Decompression EnumerationUncompressor::UncompressItem functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability. Se presenta una vulnerabilidad de desbordamiento de búfer en la región heap de la memoria en la funcionalidad XML Decompression EnumerationUncompressor::UncompressItem de Xmill versión 0.7 de AT&T Labs. Un archivo XMI ... • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1292 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •

CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 1

CVE-2021-21830

https://notcve.org/view.php?id=CVE-2021-21830

13 Aug 2021 — A heap-based buffer overflow vulnerability exists in the XML Decompression LabelDict::Load functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability. Se presenta una vulnerabilidad de desbordamiento de búfer en la región heap de la memoria en la funcionalidad XML Decompression LabelDict::Load de Xmill versión 0.7 de AT&T Labs. Un archivo XMI especialmente diseñado puede conllevar a una eje... • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1293 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •

1 2