PT-2023-4335 · Cncsoft+1 · Cncsoft+1
Simon Humbert
·
Published
2023-02-02
·
Updated
2023-08-04
·
CVE-2022-4634
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
CNCSoft versions prior to 1.01.34
ScreenEditor versions prior to 1.01.5
Description
The issue is caused by a stack-based buffer overflow. This could allow an attacker to remotely execute arbitrary code.
Recommendations
For CNCSoft versions prior to 1.01.34, update to version 1.01.34 or later.
For ScreenEditor versions prior to 1.01.5, update to version 1.01.5 or later.
Fix
Stack Overflow
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cncsoft
Screeneditor