Описание
A stack-based buffer overflow exists in Achat v0.150 in its default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler (SEH) due to insufficient bounds checking on user-supplied input leading to remote code execution.
EPSS
Процентиль: 98%
0.52216
Средний
Дефекты
CWE-94
Связанные уязвимости
github
7 месяцев назад
A stack-based buffer overflow exists in Achat v0.150 in its default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler (SEH) due to insufficient bounds checking on user-supplied input leading to remote code execution.
EPSS
Процентиль: 98%
0.52216
Средний
Дефекты
CWE-94