Enviar #673137: DCMTK GitHub Repository DCMTK 3.6.5 Stack-based Buffer Overflowinformación

TítuloDCMTK GitHub Repository DCMTK 3.6.5 Stack-based Buffer Overflow
Descripción A stack buffer overflow exists in DCMTK (dcmqrscp) ≤ 3.6.5+DEV when parsing the `StorageQuota` field in the AETable. Function `quota(const char*)` reads the last two characters of a quota string without verifying length (`strlen(value) >= 2`), leading to an out-of-bounds read from a stack buffer populated in `parseQuota()`.
Fuente⚠️ https://shimo.im/docs/rp3OMVMDPKtjn0km/
Usuario
 zh_vul (UID 91488)
Sumisión2025-10-11 05:26 (hace 8 meses)
Moderación2025-10-19 12:27 (8 days later)
EstadoAceptado
Entrada de VulDB329028 [DCMTK hasta 3.6.5 dcmqrscp parseQuota StorageQuota desbordamiento de búfer]
Puntos19

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!