CVE-2018-5410

CVE-2018-5410: Dokan file system driver contains a stack-based buffer overflow

Vendor Dokan
Product Open Source File System
Weakness CWE-121
Published January 7, 2019
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Dokan, versions between 1.0.0.5000 and 1.2.0.1000, are vulnerable to a stack-based buffer overflow in the dokan1.sys driver. An attacker can create a device handle to the system driver and send arbitrary input that will trigger the vulnerability. This vulnerability was introduced in the 1.0.0.5000 version update.

Key dates

02Disclosure timeline

January 7, 2019 CVE published
August 5, 2024 Record updated