CVE-2019-25569

Name of the Vulnerable Software and Affected Versions RealTerm Serial Terminal version 2.0.0.70

Description The software contains a stack-based buffer overflow in the Echo Port field. A local attacker can cause a denial of service by triggering a structured exception handler (SEH) chain corruption. An attacker can create a malicious input string with 268 bytes of padding followed by SEH overwrite values and paste it into the Port field. The Echo Port field is the point of entry for the attack. The structured exception handler (SEH) is a mechanism in Windows used to handle exceptions during program execution. Corruption of the SEH chain can lead to application crashes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.