cve
base
Search
Products
Trending
About
Docs
Pricing
Home
/
Products
/
nongnu
/
Nongnu Libntlm
Nongnu Libntlm vulnerabilities
1 known vulnerability affecting
nongnu/libntlm
.
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL
1
Vulnerabilities
Page 1 of 1
CVE-2019-17455
CRITICAL
CVSS 9.8
≤ 1.5
2019-10-10
CVE-2019-17455 [CRITICAL] CWE-125 CVE-2019-17455: Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, an Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request.
nvd
osv