PT-2018-15241 · Nomachine+1 · Nomachine+1
Published
2018-12-10
·
Updated
2026-02-25
·
CVE-2018-20029
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
NoMachine versions prior to 6.4.6
DokanFS library version 0.6.0
Description
The issue allows local users to cause a denial of service, resulting in a Blue Screen of Death (BSOD), because the nxfs.sys driver in the DokanFS library can read uninitialized memory.
Recommendations
For NoMachine versions prior to 6.4.6, update to version 6.4.6 or later to resolve the issue.
For DokanFS library version 0.6.0, consider disabling the nxfs.sys driver as a temporary workaround until a patch is available.
Fix
DoS
Use of Uninitialized Resource
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dokanfs Library
Nomachine