Arbitrary Code Execution via Structured Exception Handler (SEH) Buffer Overflow in File Sharing Wizard 1.5.0

Arbitrary Code Execution via Structured Exception Handler (SEH) Buffer Overflow in File Sharing Wizard 1.5.0

CVE-2019-16724 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by exploiting a Structured Exception Handler (SEH) based buffer overflow in an HTTP POST parameter, a similar issue to CVE-2010-2330 and CVE-2010-2331.

Learn more about our Web Application Penetration Testing UK.