CVE-2016-8335

Name of the Vulnerable Software and Affected Versions Iceni Argus versions 6.6.04

Description A stack-based buffer overflow issue exists in the ipNameAdd functionality. This can be triggered by a specially crafted pdf file, leading to a buffer overflow and potentially allowing arbitrary code execution. An attacker can exploit this by sending or providing a malicious pdf file.

Recommendations For version 6.6.04, consider avoiding the use of the ipNameAdd functionality until a fix is available. As a temporary workaround, restrict the handling of pdf files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.