Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
RGui 3.5.0 Local Buffer Overflow SEH DEP Bypass
Vulnerability Description
RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based buffer overflow, execute a ROP chain for VirtualAlloc allocation, and achieve arbitrary code execution.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
RGui 代码问题漏洞
Vulnerability Description
RGui是The R Foundation基金会的一个云平台管理与资源可视化操作的Web界面系统。 RGui 3.5.0版本存在代码问题漏洞,该漏洞源于GUI首选项对话框存在本地缓冲区溢出,可能导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A