CVE-2014-1215
published 2018-03-20CVE-2014-1215: Multiple buffer overflows in Core FTP Server before 1.2 build 508 allow local users to gain privileges via vectors related to reading data from config.dat and…
PriorityP336high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
EPSS
0.37%
29.1th percentile
Multiple buffer overflows in Core FTP Server before 1.2 build 508 allow local users to gain privileges via vectors related to reading data from config.dat and Windows Registry.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| coreftp | core_ftp | <= 1.2 | — |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.1HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5fqx-pg59-xr74: Multiple buffer overflows in Core FTP Server before 1
ghsa_unreviewed·2022-05-14
CVE-2014-1215 [HIGH] CWE-119 GHSA-5fqx-pg59-xr74: Multiple buffer overflows in Core FTP Server before 1
Multiple buffer overflows in Core FTP Server before 1.2 build 508 allow local users to gain privileges via vectors related to reading data from config.dat and Windows Registry.
Red Hat
kernel: module: fix [e_shstrndx].sh_size=0 OOB access
vendor_redhat·2025-02-26·CVSS 7.1
CVE-2022-49444 [HIGH] CWE-125 kernel: module: fix [e_shstrndx].sh_size=0 OOB access
kernel: module: fix [e_shstrndx].sh_size=0 OOB access
In the Linux kernel, the following vulnerability has been resolved:
module: fix [e_shstrndx].sh_size=0 OOB access
It is trivial to craft a module to trigger OOB access in this line:
if (info->secstrings[strhdr->sh_size - 1] != '\0') {
BUG: unable to handle page fault for address: ffffc90000aa0fff
PGD 100000067 P4D 100000067 PUD 100066067 PMD 10436f067 PTE 0
Oops: 0000 [#1] PREEMPT SMP PTI
CPU: 7 PID: 1215 Comm: insmod Not tainted 5.18.0-rc5-00007-g9bf578647087-dirty #10
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-4.fc34 04/01/2014
RIP: 0010:load_module+0x19b/0x2391
[rebased patch onto modules-next]
Package: kernel (Red Hat Enterprise Linux 10) - Not affected
Package: kernel (Red Hat Enterprise Linux 6) - Not af
No detection rules found.
No public exploits indexed.
http://www.securityfocus.com/archive/1/531144/100/0/threadedhttps://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-1215/http://www.securityfocus.com/archive/1/531144/100/0/threadedhttps://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-1215/
2018-03-20
Published