Описание
A stack based buffer overflow vulnerability exists in the method receiving data from SysTreeView32 control of the GMER 2.1.19357 application. A specially created long path can lead to a buffer overflow on the stack resulting in code execution. An attacker needs to create path longer than 99 characters to trigger this vulnerability.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gmer:gmer:2.1.19357:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00129
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-787
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
A stack based buffer overflow vulnerability exists in the method receiving data from SysTreeView32 control of the GMER 2.1.19357 application. A specially created long path can lead to a buffer overflow on the stack resulting in code execution. An attacker needs to create path longer than 99 characters to trigger this vulnerability.
EPSS
Процентиль: 33%
0.00129
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-787