CVE-2020-37040

Name of the Vulnerable Software and Affected Versions Code Blocks version 17.12

Description Code Blocks 17.12 contains a local buffer overflow that allows attackers to execute arbitrary code. This is achieved by crafting a malicious file name with Unicode characters. Attackers can trigger the issue by pasting a specially crafted payload into the file name field during project creation, potentially executing system commands like calc.exe. The vulnerability involves a buffer overflow in the handling of file names.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.