Stack-based Buffer Overflow in fmt_entry function of ncurses 6.0 Allows Remote Arbitrary Code Execution

Stack-based Buffer Overflow in fmt_entry function of ncurses 6.0 Allows Remote Arbitrary Code Execution

CVE-2017-10684 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

Learn more about our Web Application Penetration Testing UK.