A flaw was found in the hivex library in versions before 1.3.20. It is caused due to a lack of bounds check within the hivex_open function. An attacker could input a specially crafted Windows Registry (hive) file which would cause hivex to read memory beyond its normal bounds or cause the program to crash. The highest threat from this vulnerability is to system availability.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
07 Nov 2023, 03:38
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2021-05-11 23:15
Updated : 2024-02-28 18:28
NVD link : CVE-2021-3504
Mitre link : CVE-2021-3504
CVE.ORG link : CVE-2021-3504
JSON object : View
Products Affected
fedoraproject
- fedora
debian
- debian_linux
redhat
- enterprise_linux
- hivex
CWE
CWE-125
Out-of-bounds Read