Vulnerabilities > Hardlink Project

DATE CVE VULNERABILITY TITLE RISK
2019-11-26 CVE-2011-3632 Link Following vulnerability in multiple products
Hardlink before 0.1.2 operates on full file system objects path names which can allow a local attacker to use this flaw to conduct symlink attacks.
local
low complexity
hardlink-project redhat debian CWE-59
7.1
2019-11-26 CVE-2011-3631 Integer Overflow or Wraparound vulnerability in multiple products
Hardlink before 0.1.2 has multiple integer overflows leading to heap-based buffer overflows because of the way string lengths concatenation is done in the calculation of the required memory space to be used.
network
low complexity
hardlink-project redhat debian CWE-190
8.8
2019-11-26 CVE-2011-3630 Out-of-bounds Write vulnerability in multiple products
Hardlink before 0.1.2 suffer from multiple stack-based buffer overflow flaws because of the way directory trees with deeply nested directories are processed.
network
low complexity
hardlink-project redhat debian CWE-787
8.8