CVE-2020-37001

Name of the Vulnerable Software and Affected Versions Frigate Professional version 3.36.0.9

Description A local buffer overflow exists in the Pack File feature. An attacker can execute arbitrary code by overflowing the 'Archive To' input field. This is achieved by crafting a malicious payload that overwrites the Structured Exception Handler (SEH), which is a mechanism for handling software exceptions, and utilizes an egghunter technique, a small piece of code used to find a larger payload in memory, to execute a reverse shell payload.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.