CVE-2016-20041 in Yasr Screen Reader信息

摘要 (英语)

Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized argument to the -p parameter. Attackers can invoke yasr with a crafted payload containing junk data, shellcode, and a return address to overwrite the stack and trigger code execution.

负责

VulnCheck

预定

2026-03-28

披露

2026-03-28

条目

已发布	基础	临时	漏洞	CWE	产品	可利用	对策	EPSS	CTI	CVE
2026-03-28	6.8	6.6	Yasr Screen Reader 目录遍历	22	未知	概念验证	未定义	0.00017	3.09	CVE-2016-20041

显示更多

描述
更改
网络威胁情报
API/JSON

◂ 上一步一览下一步 ▸

Want to know what is going to be exploited?

We predict KEV entries!