CVE-2019-25607 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Axessh 4.2 contains a stack-based buffer overflow vulnerability in the log file name field that allows local attackers to execute arbitrary code by supplying an…
High CVSS: 8.6

CVE-2019-25607

Axessh 4.2 contains a stack-based buffer overflow vulnerability in the log file name field that allows local attackers to execute arbitrary code by supplying an excessively long filename. Attackers can overflow the buffer at offset 214 bytes to overwrite the instruction pointer and execute shellcode with system privileges.
Vendor
-
Product
-
CWE
CWE-787
Yayın Tarihi
2026-03-22 14:16:28
Güncelleme
2026-03-23 14:31:37
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-787 HIGH 2026

Referanslar

http://www.labf.com http://www.labf.com/download/axessh.exe https://www.exploit-db.com/exploits/46858 https://www.exploit-db.com/exploits/46922 https://www.exploit-db.com/shellcodes/46281 https://www.vulncheck.com/advisories/axessh-local-stack-based-buffer-overflow-via-log-file-name