CVE-2016-20048

Name of the Vulnerable Software and Affected Versions iSelect version 1.4.0-2+b1

Description A local buffer overflow occurs when an oversized value is supplied to the -k/--key parameter. This allows local attackers to overflow a 1024-byte stack buffer using a malicious argument containing a NOP sled, shellcode, and return address to execute arbitrary code with user privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.