{"vulnerability": "CVE-2011-3631", "sightings": [{"uuid": "2111e8bb-2368-4c8b-9b48-ce03baf24b3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-3631", "type": "seen", "source": "https://t.me/ctinow/194769", "content": "https://ift.tt/nScUh7p\nCVE-2011-3631 | Hardlink up to 0.1.1 integer overflow (Nessus ID 57069 / BID-50805)", "creation_timestamp": "2024-02-27T19:21:54.000000Z"}, {"uuid": "17c3d183-2a8c-4b88-8fc5-9d7663c9d983", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-3631", "type": "seen", "source": "https://t.me/cibsecurity/8318", "content": "ATENTION\u203c New - CVE-2011-3631\n\nHardlink before 0.1.2 has multiple integer overflows leading to heap-based buffer overflows because of the way string lengths concatenation is done in the calculation of the required memory space to be used. A remote attacker could provide a specially-crafted directory tree and trick the local user into consolidating it, leading to hardlink executable crash or potentially arbitrary code execution with user privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-11-26T08:57:22.000000Z"}]}