CVE-2016-20037 in Identicalsoftware xWPEinformation

Résumé (Anglaise)

xwpe 1.5.30a-2.1 and prior contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying overly long input strings that exceed buffer boundaries. Attackers can craft malicious command-line arguments with 262 bytes of junk data followed by shellcode to overwrite the instruction pointer and achieve code execution or denial of service.

Responsable

VulnCheck

Réserver

28/03/2026

Divulgation

28/03/2026

Entrées

Publié	Base	Temp	Vulnérabilité	CWE	Prod	Exp	Con	EPSS	CTI	CVE
28/03/2026	6.8	6.6	Identicalsoftware xWPE Command-Line Argument buffer overflow	787	Inconnu	Preuve de concept	Non défini	0.00012	2.34	CVE-2016-20037

Montrer plus

Description
Changements
Renseignements sur les menaces
API/JSON

◂ PrécédentAperçuSuivant ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!