| عنوان | DCMTK GitHub Repository DCMTK 3.6.5 Stack-based Buffer Overflow |
|---|
| الوصف | A stack buffer overflow exists in DCMTK (dcmqrscp) ≤ 3.6.5+DEV when parsing the `StorageQuota` field in the AETable. Function `quota(const char*)` reads the last two characters of a quota string without verifying length (`strlen(value) >= 2`), leading to an out-of-bounds read from a stack buffer populated in `parseQuota()`. |
|---|
| المصدر | ⚠️ https://shimo.im/docs/rp3OMVMDPKtjn0km/ |
|---|
| المستخدم | zh_vul (UID 91488) |
|---|
| ارسال | 11/10/2025 05:26 AM (8 أشهر منذ) |
|---|
| الاعتدال | 19/10/2025 12:27 PM (8 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 329028 [DCMTK حتى 3.6.5 dcmqrscp parseQuota StorageQuota تلف الذاكرة] |
|---|
| النقاط | 19 |
|---|