CVE-2021-21813

Name of the Vulnerable Software and Affected Versions Xmill (affected versions not specified)

Description The issue is related to a memory boundary error in the HandleFileArg function of the Xmill XML compression tool when processing an XML file. This can be exploited by a local attacker to execute arbitrary code. The filepattern argument, which is under the control of the user and passed from the command line, is copied directly to a statically sized buffer using memcpy without any length checks, resulting in a stack-buffer overflow.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.