Описание
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGE_EXPORT_DIRECTORY array in a PE file, which could complicate forensics investigations.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:fransois_gannier:fileinfo_plugin:2.09:*:*:*:*:*:*:*
cpe:2.3:a:ghisler:total_commander:*:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00551
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
почти 4 года назад
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGE_EXPORT_DIRECTORY array in a PE file, which could complicate forensics investigations.
EPSS
Процентиль: 67%
0.00551
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-94