CVE-2016-20049 in Varaneckas JAD Java Decompilerinfo

Summary

JAD 1.5.8e-1kali1 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying oversized input that exceeds buffer boundaries. Attackers can craft malicious input strings exceeding 8150 bytes to overflow the stack, overwrite return addresses, and execute shellcode in the application context.

Responsible

VulnCheck

Reservation

03/28/2026

Disclosure

03/28/2026

Entries

Published	Base	Temp	Vulnerability	CWE	Prod	Exp	Cou	EPSS	CTI	CVE
03/28/2026	8.5	8.2	Varaneckas JAD Java Decompiler out-of-bounds write	787	Programming Language Software	Proof-of-Concept	Not defined	0.00068	2.06	CVE-2016-20049

Show more

Description
Changes
Cyber Threat Intelligence
API/JSON

◂ PreviousOverviewNext ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!