Stack-Based Buffer Overflow in Naver Cloud Explorer by NDrive
CVE-2019-13156

7.5HIGH

Key Information:

Vendor: Naver Corporation
Status: Ndrive
Vendor: CVE Published:; 3 September 2019

🔔 Create Naver Corporation Vulnerability Alert

What is CVE-2019-13156?

The version 1.2.2 of the NDrive driver in Naver Cloud Explorer is susceptible to a stack-based buffer overflow. This vulnerability occurs when the application improperly handles IOCTL requests, allowing unauthorized users to exploit the flaw and cause a denial of service by manipulating data interactions. The exploit could lead to unexpected behaviors and system instability, emphasizing the need for timely updates and patches.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

NDrive <= 1.2.2

References

https://cve.naver.com/detail/cve-2019-13156

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 3, 2019
Vulnerability Reserved
Jul 2, 2019

Credit

MyeongHwan Seo(f10w3r) rootsmh0311@gmail.com

JSON

Naver Corporation

What is CVE-2019-13156?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.