Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
yTree 1.94-1.1 Stack-Based Buffer Overflow
Vulnerability Description
yTree 1.94-1.1 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an excessively long argument to the application. Attackers can craft a malicious command-line argument containing shellcode and a return address to overwrite the stack and execute code in the application context.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
yTree 缓冲区错误漏洞
Vulnerability Description
yTree是Werner Bregulla个人开发者的一个基于终端界面的文件管理与目录浏览工具。 yTree 1.94-1.1版本存在缓冲区错误漏洞,该漏洞源于栈缓冲区溢出,可能导致本地攻击者通过提供超长参数执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A