Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
xwpe 1.5.30a-2.1 Stack-based Buffer Overflow
Vulnerability Description
xwpe 1.5.30a-2.1 and prior contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying overly long input strings that exceed buffer boundaries. Attackers can craft malicious command-line arguments with 262 bytes of junk data followed by shellcode to overwrite the instruction pointer and achieve code execution or denial of service.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Xwpe 缓冲区错误漏洞
Vulnerability Description
Xwpe是Xwpe公司的一个基于终端的文本编辑与集成开发环境工具。 Xwpe 1.5.30a-2.1及之前版本存在缓冲区错误漏洞,该漏洞源于栈缓冲区溢出,可能导致本地攻击者通过提供超长输入字符串执行任意代码或拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A