Vulnerability Details CVE-2021-32559
An integer overflow exists in pywin32 prior to version b301 when adding an access control entry (ACE) to an access control list (ACL) that would cause the size to be greater than 65535 bytes. An attacker who successfully exploited this vulnerability could crash the vulnerable process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.2%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
- https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0017/FEYE-2021-0017.md
- https://github.com/mhammond/pywin32/issues/1700
- https://github.com/mhammond/pywin32/pull/1701
- https://github.com/mhammond/pywin32/releases
- https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0017/FEYE-2021-0017.md
- https://github.com/mhammond/pywin32/issues/1700
- https://github.com/mhammond/pywin32/pull/1701
- https://github.com/mhammond/pywin32/releases
Products affected by CVE-2021-32559
-
cpe:2.3:a:mhammond:pywin32:-
-
cpe:2.3:a:mhammond:pywin32:126
-
cpe:2.3:a:mhammond:pywin32:127
-
cpe:2.3:a:mhammond:pywin32:128
-
cpe:2.3:a:mhammond:pywin32:129
-
cpe:2.3:a:mhammond:pywin32:129f
-
cpe:2.3:a:mhammond:pywin32:130
-
cpe:2.3:a:mhammond:pywin32:131
-
cpe:2.3:a:mhammond:pywin32:132
-
cpe:2.3:a:mhammond:pywin32:134
-
cpe:2.3:a:mhammond:pywin32:135
-
cpe:2.3:a:mhammond:pywin32:139
-
cpe:2.3:a:mhammond:pywin32:140
-
cpe:2.3:a:mhammond:pywin32:141
-
cpe:2.3:a:mhammond:pywin32:142
-
cpe:2.3:a:mhammond:pywin32:145
-
cpe:2.3:a:mhammond:pywin32:146
-
cpe:2.3:a:mhammond:pywin32:147
-
cpe:2.3:a:mhammond:pywin32:148
-
cpe:2.3:a:mhammond:pywin32:149
-
cpe:2.3:a:mhammond:pywin32:151
-
cpe:2.3:a:mhammond:pywin32:153
-
cpe:2.3:a:mhammond:pywin32:157
-
cpe:2.3:a:mhammond:pywin32:159
-
cpe:2.3:a:mhammond:pywin32:200
-
cpe:2.3:a:mhammond:pywin32:201
-
cpe:2.3:a:mhammond:pywin32:202
-
cpe:2.3:a:mhammond:pywin32:203
-
cpe:2.3:a:mhammond:pywin32:204
-
cpe:2.3:a:mhammond:pywin32:205
-
cpe:2.3:a:mhammond:pywin32:206
-
cpe:2.3:a:mhammond:pywin32:207
-
cpe:2.3:a:mhammond:pywin32:208
-
cpe:2.3:a:mhammond:pywin32:209
-
cpe:2.3:a:mhammond:pywin32:211
-
cpe:2.3:a:mhammond:pywin32:212
-
cpe:2.3:a:mhammond:pywin32:213
-
cpe:2.3:a:mhammond:pywin32:214
-
cpe:2.3:a:mhammond:pywin32:215
-
cpe:2.3:a:mhammond:pywin32:216
-
cpe:2.3:a:mhammond:pywin32:217
-
cpe:2.3:a:mhammond:pywin32:218
-
cpe:2.3:a:mhammond:pywin32:218.3
-
cpe:2.3:a:mhammond:pywin32:219
-
cpe:2.3:a:mhammond:pywin32:220
-
cpe:2.3:a:mhammond:pywin32:221
-
cpe:2.3:a:mhammond:pywin32:222
-
cpe:2.3:a:mhammond:pywin32:223
-
cpe:2.3:a:mhammond:pywin32:224
-
cpe:2.3:a:mhammond:pywin32:225
-
cpe:2.3:a:mhammond:pywin32:226
-
cpe:2.3:a:mhammond:pywin32:227
-
cpe:2.3:a:mhammond:pywin32:228
-
cpe:2.3:a:mhammond:pywin32:300