漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
RealTerm Serial Terminal 2.0.0.70 Buffer Overflow SEH
Vulnerability Description
RealTerm Serial Terminal 2.0.0.70 contains a structured exception handling (SEH) buffer overflow vulnerability in the Echo Port tab that allows local attackers to execute arbitrary code by supplying a malicious payload. Attackers can craft a buffer overflow payload with a POP POP RET gadget chain and shellcode that triggers code execution when pasted into the Port field and the Change button is clicked.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
RealTerm Serial Terminal 缓冲区错误漏洞
Vulnerability Description
RealTerm Serial Terminal是crun个人开发者的一款支持串口通信、数据捕获与调试的终端工具软件。 RealTerm Serial Terminal 2.0.0.70版本存在缓冲区错误漏洞,该漏洞源于结构化异常处理缓冲区溢出,可能导致本地攻击者执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A