Launchpad.net

CVE 2014-9273

lib/handle.c in Hivex before 1.3.11 allows local users to execute arbitrary code and gain privileges via a small hive files, which triggers an out-of-bounds read or write.

See the CVE page on Mitre.org for more details.