CVE-2016-20038

Name of the Vulnerable Software and Affected Versions yTree version 1.94-1.1

Description A stack-based buffer overflow allows local attackers to execute arbitrary code by providing an excessively long argument to the application. This is achieved by crafting a malicious command-line argument containing shellcode and a return address to overwrite the stack and execute code within the application context.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.