CVE-2017-11328

Heap buffer overflow in the yr_object_array_set_item() function in object.c in YARA 3.x allows a denial-of-service attack by scanning a crafted .NET file.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:virustotal:yara:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.5.0:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:virustotal:yara:3.6.3:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-07-17 13:18

Updated : 2024-02-04 19:29


NVD link : CVE-2017-11328

Mitre link : CVE-2017-11328

CVE.ORG link : CVE-2017-11328


JSON object : View

Products Affected

virustotal

  • yara
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer