← back
CVE-2019-25661

Remote Process Explorer 1.0.0.16 Local Buffer Overflow DoS

CVSS 6.9 MEDIUMEPSS 0.1%CWE-787
Remote Process Explorer 1.0.0.16 contains a local buffer overflow vulnerability that allows attackers to cause a denial of service by sending a crafted payload to the Add Computer dialog. Attackers can paste a malicious string into the computer name textbox and trigger a crash by connecting to the added computer, overwriting the SEH chain and corrupting exception handlers.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected products
Lizardsystems · Remote Process Explorer
public PoCs found1
cve_referencewww.exploit-db.com/exploits/46304unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lizardsystems.com/action.php?action=home&product=rpexplorer&version=1.0.0.16https://www.exploit-db.com/exploits/46304https://www.vulncheck.com/advisories/remote-process-explorer-local-buffer-overflow-dos