← Back

Truecrypt Project

truecrypt_project

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Truecrypt
truecrypt
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-2885
1Truecrypt Project
1Truecrypt
Nov 21, 2024
Mar 19, 2018
N/A· v4
7.1 HIGH· v3
3.6 LOW· v2
Multiple integer overflows in TrueCrypt 7.1a allow local users to (1) obtain sensitive information via vectors involving a crafted item->OriginalLength value in the MainThreadProc function in EncryptedIoQueue.c or (2) ca...Show more
Multiple integer overflows in TrueCrypt 7.1a allow local users to (1) obtain sensitive information via vectors involving a crafted item->OriginalLength value in the MainThreadProc function in EncryptedIoQueue.c or (2) cause a denial of service (memory consumption) via vectors involving large StartingOffset and Length values in the ProcessVolumeDeviceControlIrp function in Ntdriver.c.Show less
CVE-2014-2884
1Truecrypt Project
1Truecrypt
Nov 21, 2024
Mar 19, 2018
N/A· v4
3.3 LOW· v3
2.1 LOW· v2
The ProcessVolumeDeviceControlIrp function in Ntdriver.c in TrueCrypt 7.1a allows local users to bypass access restrictions and obtain sensitive information about arbitrary files via a (1) TC_IOCTL_OPEN_TEST or (2) TC_IO...Show more
The ProcessVolumeDeviceControlIrp function in Ntdriver.c in TrueCrypt 7.1a allows local users to bypass access restrictions and obtain sensitive information about arbitrary files via a (1) TC_IOCTL_OPEN_TEST or (2) TC_IOCTL_GET_SYSTEM_DRIVE_CONFIG IOCTL call.Show less