CVE-2018-19975

Published December 17th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.1

HIGH

Affected

PROJECTS

Description

In YARA 3.8.1, bytecode in a specially crafted compiled rule can read data from any arbitrary address in memory, in libyara/exec.c. Specifically, OP_COUNT can read a DWORD.

VirusTotal/yara

The pattern matching swiss knife

GitHub

9.65K

bnbdr/swisscheese

Exploits for YARA 3.7.1 & 3.8.1

GitHub