Heap-based Buffer Overflow in map.c of FreedroidRPG 1.0rc2

Heap-based Buffer Overflow in map.c of FreedroidRPG 1.0rc2

CVE-2020-14938 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered in map.c in FreedroidRPG 1.0rc2. It assumes lengths of data sets read from saved game files. It copies data from a file into a fixed-size heap-allocated buffer without size verification, leading to a heap-based buffer overflow.

Learn more about our Web Application Penetration Testing UK.