CVE-2021-21826 in Xmillinfo

Zusammenfassung

von MITRE • 21.08.2021

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. Within `DecodeTreeBlock` which is called during the decompression of an XMI file, a UINT32 is loaded from the file and used as trusted input as the length of a buffer. An attacker can provide a malicious file to trigger this vulnerability.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

04.01.2021

Veröffentlichung

21.08.2021

Moderieren

akzeptiert

Eintrag

VDB-181258

CPE

bereit

EPSS

0.01136

KEV

nein

Aktivitäten

very low

Quellen

Do you know our Splunk app?

Download it now for free!