CVE-2018-11727

Name of the Vulnerable Software and Affected Versions libfsntfs versions through 2018-04-20

Description The issue allows remote attackers to cause an information disclosure via a crafted ntfs file. This is achieved through a heap-based buffer over-read in the libfsntfs attribute read from mft function in libfsntfs attribute.c. The vendor has disputed this issue, as described in libyal/libfsntfs issue 8 on GitHub.

Recommendations For libfsntfs versions through 2018-04-20, consider disabling the libfsntfs attribute read from mft function as a temporary workaround until a patch is available. Restrict access to crafted ntfs files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.