Javier Perez

**Name of the Vulnerable Software and Affected Versions** Velocidex Velociraptor versions prior to 0.76.5 **Description** An off-by-one error in the `ConsumeUnit16Array()` and `ConsumeUnit64Array()` functions allows a local attacker to cause a Denial of Service (DoS) via a process crash. This occurs when a specially crafted .evtx file is provided to the 'parse evtx' VQL plugin. An off-by-one error is a situation where a program iterates one time too many or too few, often leading to memory access violations. **Recommendations** Update to version 0.76.5 or later.