Описание
Sandboxie 5.30 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Program Alerts configuration field. Attackers can paste a buffer of 5000 characters into the 'Select or enter a program' field during program alert configuration to trigger an application crash.
Ссылки
- ExploitVDB Entry
- Product
- Third Party Advisory
Уязвимые конфигурации
EPSS
6.2 Medium
CVSS3
5.5 Medium
CVSS3
Дефекты
Связанные уязвимости
Sandboxie 5.30 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Program Alerts configuration field. Attackers can paste a buffer of 5000 characters into the 'Select or enter a program' field during program alert configuration to trigger an application crash.
EPSS
6.2 Medium
CVSS3
5.5 Medium
CVSS3