CVE-2021-21814

Name of the Vulnerable Software and Affected Versions Xmill (affected versions not specified)

Description The issue is related to the function HandleFileArg in the Xmill XML compression tool, which is vulnerable to exploitation due to the lack of checks on user-provided input. Specifically, the filepattern argument is passed directly to strlen to determine the ending location of the user-provided char*, and then memcpy is used to copy data into a statically sized buffer without checking if the input is longer than the buffer. After the memcpy, a null byte is written to what is assumed to be the end of the buffer to terminate the char*, but without length checks, this null write can occur at an arbitrary offset from the buffer. An attacker can provide malicious input to trigger this vulnerability, potentially allowing a local attacker to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.