CVE-2013-6079
Description
Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in the (1) registration code field in the activate license window or the (2) HKLM\SOFTWARE\MostGear\EasyLanFolderShare_V1\License registry key. NOTE: it is not clear from the original report whether this issue crosses privilege boundaries. If not, then it should not be included in CVE.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| mostgear | easy_lan_folder_share | 3.2.0.100 | |
References
- http://osvdb.org/show/osvdb/94390
- http://packetstormsecurity.com/files/122677
- http://www.exploit-db.com/exploits/26214
- http://www.exploit-db.com/exploits/27316
- http://osvdb.org/show/osvdb/94390
- http://packetstormsecurity.com/files/122677
- http://www.exploit-db.com/exploits/26214
- http://www.exploit-db.com/exploits/27316
CWEs
CWE-119
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.