| タイトル | Buffer Overflow in Police Station Management System's remove() Function v1.0 Buffer Overflow |
|---|
| 説明 | The Police Station Management System contains a critical stack-based buffer overflow vulnerability (CWE-121) in the `criminal::remove()` function. The vulnerability stems from the unsafe use of the `gets()` function to read convict ID input into a fixed-size buffer without proper bounds checking. This allows attackers to overwrite adjacent stack memory, potentially leading to arbitrary code execution or denial of service. |
|---|
| ソース | ⚠️ https://github.com/zzzxc643/cve/blob/main/Police-StationManagementSystem2.md |
|---|
| ユーザー | zzzxc (UID 81185) |
|---|
| 送信 | 2025年05月14日 14:17 (1 年 ago) |
|---|
| モデレーション | 2025年05月17日 08:33 (3 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 309445 [code-projects Police Station Management System 1.0 Delete Record source.cpp criminal::remove いいえ メモリ破損] |
|---|
| ポイント | 20 |
|---|