Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
JAD 1.5.8e-1kali1 Stack-Based Buffer Overflow
Vulnerability Description
JAD Java Decompiler 1.5.8e-1kali1 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying overly long input that exceeds buffer boundaries. Attackers can craft malicious input passed to the jad command to overflow the stack and execute a return-oriented programming chain that spawns a shell.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Varaneckas JAD Java Decompiler 缓冲区错误漏洞
Vulnerability Description
Varaneckas JAD Java Decompiler是Varaneckas公司的一个将Java字节码反编译为可读源代码的工具。 Varaneckas JAD Java Decompiler 1.5.8e-1kali1及之前版本存在缓冲区错误漏洞,该漏洞源于栈缓冲区溢出,可能导致攻击者通过提供超长输入执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A