Vulnerability Details CVE-2019-7629
Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.067
EPSS Ranking 90.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://tintin.sourceforge.io/forum/viewtopic.php?f=1&t=2584&sid=31b77bb001faea9269bf224280960e29#p10505
- https://tintin.sourceforge.io/news.php
- https://trustfoundry.net/cve-2019-7629-rce-in-an-open-source-mud-client/
- https://tintin.sourceforge.io/forum/viewtopic.php?f=1&t=2584&sid=31b77bb001faea9269bf224280960e29#p10505
- https://tintin.sourceforge.io/news.php
- https://trustfoundry.net/cve-2019-7629-rce-in-an-open-source-mud-client/
Products affected by CVE-2019-7629
-
cpe:2.3:a:tintin++_project:tintin++:2.01.6
-
cpe:2.3:a:tintin++_project:wintin++:2.01.6