Arbitrary Code Execution and Privilege Escalation via Small Hive Files in Hivex

Arbitrary Code Execution and Privilege Escalation via Small Hive Files in Hivex

CVE-2014-9273 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

lib/handle.c in Hivex before 1.3.11 allows local users to execute arbitrary code and gain privileges via a small hive files, which triggers an out-of-bounds read or write.

Learn more about our User Device Pen Test.