Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
R 3.4.4 Local Buffer Overflow Windows XP SP3
Vulnerability Description
R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by injecting malicious input into the GUI Preferences language field. Attackers can craft a payload with a 292-byte offset and JMP ESP instruction to execute commands like calc.exe when the payload is pasted into the Language for menus and messages field.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
R 缓冲区错误漏洞
Vulnerability Description
R是The R Foundation基金会的一个统计计算软件。 R 3.4.4版本存在缓冲区错误漏洞,该漏洞源于对GUI Preferences语言字段的输入验证不足,可能导致本地缓冲区溢出和执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A