Security Advisory

CVE-2019-17455

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-10-10 17:17:48

Last updated 2024-08-05 01:40:15

Assigner mitre

State PUBLISHED

Description

Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request.

← Browse all CVEs View on cve.org ↗