bnbdr/swisscheese

bnbdr/swisscheese

bnbdr.github.io

Releases0

Stars36

Exploits for YARA 3.7.1 & 3.8.1

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-19976 ↗	Dec 17, 2018Monday, 17 December 2018, 19:29	—	4.3 MEDIUM
In YARA 3.8.1, bytecode in a specially crafted compiled rule is exposed to information about its environment, in libyara/exec.c. This is a consequence of the design of the YARA virtual machine.
CVE-2018-19974 ↗	Dec 17, 2018Monday, 17 December 2018, 19:29	—	4.3 MEDIUM
In YARA 3.8.1, bytecode in a specially crafted compiled rule can read uninitialized data from VM scratch memory in libyara/exec.c. This can allow attackers to discover addresses in the real stack (not the YARA virtual stack).
CVE-2018-19975 ↗	Dec 17, 2018Monday, 17 December 2018, 19:29	—	7.1 HIGH
In YARA 3.8.1, bytecode in a specially crafted compiled rule can read data from any arbitrary address in memory, in libyara/exec.c. Specifically, OP_COUNT can read a DWORD.
CVE-2018-12034 ↗	Jun 15, 2018Friday, 15 June 2018, 16:29	—	6.8 MEDIUM
In YARA 3.7.1 and prior, parsing a specially crafted compiled rule file can cause an out of bounds read vulnerability in yr_execute_code in libyara/exec.c.
CVE-2018-12035 ↗	Jun 15, 2018Friday, 15 June 2018, 16:29	—	6.8 MEDIUM
In YARA 3.7.1 and prior, parsing a specially crafted compiled rule file can cause an out of bounds write vulnerability in yr_execute_code in libyara/exec.c.