CVE-2018-11437 – libmobi 0.3 Information Disclosure

https://notcve.org/view.php?id=CVE-2018-11437

28 May 2018 — The mobi_reconstruct_parts function in parse_rawml.c in Libmobi 0.3 allows remote attackers to cause information disclosure (read access violation) via a crafted mobi file. La función mobi_reconstruct_parts en parse_rawml.c en Libmobi 0.3 permite que atacantes remotos provoquen una divulgación de información (violación de acceso de lectura) mediante un archivo mobi manipulado. The mobi_parse_mobiheader function in read.c in libmobi version 0.3 allows remote attackers to cause an information disclosure (heap... • https://packetstorm.news/files/id/147947 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •