exploitDog

GHSA-j3fr-26p8-56xh

Опубликовано: 29 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Buffer overflow in the Windows Program Group Converter (grpconv.exe) may allow remote attackers to execute arbitrary code via a shell: URL with a long filename and a .grp extension, which is not properly handled when the shell capability launches grpconv.exe.

Buffer overflow in the Windows Program Group Converter (grpconv.exe) may allow remote attackers to execute arbitrary code via a shell: URL with a long filename and a .grp extension, which is not properly handled when the shell capability launches grpconv.exe.

Ссылки

EPSS

Процентиль: 98%

0.59215

Средний

CVE ID

Связанные уязвимости

CVE-2004-0572

nvd

больше 21 года назад

Buffer overflow in the Windows Program Group Converter (grpconv.exe) may allow remote attackers to execute arbitrary code via a shell: URL with a long filename and a .grp extension, which is not properly handled when the shell capability launches grpconv.exe.

EPSS

Процентиль: 98%

0.59215

Средний

CVE ID