CVE-2016-20037

Name of the Vulnerable Software and Affected Versions xwpe versions prior to 1.5.30a-2.1

Description A stack-based buffer overflow allows local attackers to execute arbitrary code or cause a denial of service. This occurs when overly long input strings exceed buffer boundaries. Specifically, an attacker can use malicious command-line arguments containing 262 bytes of junk data followed by shellcode to overwrite the instruction pointer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.