Multiple buffer overflows in ALPass 2.7 English and 3.02 Korean allow user-assisted remote malicious users to execute arbitrary code via an ALPass DB (APW) file containing (1) a long file-key or (2) a "Site Information and Folder entry" with a ciphertext_length value much larger than the plaintext_length value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
altools alpass 3.02 |
||
altools alpass 2.7 |