1 results (0.004 seconds)

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1

07 Jan 2019 — Dokan, versions between 1.0.0.5000 and 1.2.0.1000, are vulnerable to a stack-based buffer overflow in the dokan1.sys driver. An attacker can create a device handle to the system driver and send arbitrary input that will trigger the vulnerability. This vulnerability was introduced in the 1.0.0.5000 version update. Dokan, desde la versión 1.0.0.5000 hasta la 1.2.0.1000, es vulnerable a un desbordamiento de búfer basado en pila en el controlador dokan1.sys. Un atacante podría crear un manejador de dispositivo ... • https://www.exploit-db.com/exploits/46155 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •