Stack-based Buffer Overflow Vulnerability in GMER 2.1.19357 SysTreeView32 Control

Stack-based Buffer Overflow Vulnerability in GMER 2.1.19357 SysTreeView32 Control

CVE-2016-4289 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

A stack based buffer overflow vulnerability exists in the method receiving data from SysTreeView32 control of the GMER 2.1.19357 application. A specially created long path can lead to a buffer overflow on the stack resulting in code execution. An attacker needs to create path longer than 99 characters to trigger this vulnerability.

Learn more about our Web Application Penetration Testing UK.