Back to CVE List

CVE-2019-25631

HIGH SEVERITY

CVSS Score & Metrics

Base Score
8.4 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Description

AIDA64 Business 5.99.4900 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH pointers with malicious shellcode. Attackers can inject egg hunter shellcode through the SMTP display name field in preferences or report wizard functionality to trigger the overflow and execute code with application privileges.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-787
Source
NVD
Vendor
Aida64
Product
AIDA64 Business

External References

Discussion (0)

Add Comment

No comments yet. Be the first!