Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
RealTerm Serial Terminal 2.0.0.70 SEH Overflow Crash
Vulnerability Description
RealTerm Serial Terminal 2.0.0.70 contains a stack-based buffer overflow vulnerability in the Echo Port field that allows local attackers to crash the application by triggering a structured exception handler (SEH) chain corruption. Attackers can craft a malicious input string with 268 bytes of padding followed by SEH overwrite values and paste it into the Port field to cause denial of service.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
RealTerm Serial Terminal 缓冲区错误漏洞
Vulnerability Description
RealTerm Serial Terminal是crun个人开发者的一款支持串口通信、数据捕获与调试的终端工具软件。 RealTerm Serial Terminal 2.0.0.70版本存在缓冲区错误漏洞,该漏洞源于Echo Port字段存在基于栈的缓冲区溢出,可能导致本地攻击者通过触发结构化异常处理程序链损坏使应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A