ГлавнаяУязвимости → CVE-2020-36965
8.4высокая

CVE-2020-36965

Описание

docPrint Pro 8.0 contains a local buffer overflow vulnerability in the 'Add URL' input field that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload that triggers a structured exception handler (SEH) overwrite to execute shellcode and gain remote system access.

CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
http://www.verypdf.comhttps://www.exploit-db.com/exploits/49100https://www.vulncheck.com/advisories/docprint-pro-add-url-buffer-overflow-seh-egghunterhttps://www.exploit-db.com/exploits/49100