CVE-2020-37124

Sažetak

B64dec 1.1.2 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler (SEH) with crafted input. Attackers can leverage an egg hunter technique and carefully constructed payload to inject and execute malicious code during base64 decoding process.

Reference

http://4mhz.de/b64dec.html
https://www.exploit-db.com/exploits/48317
https://www.vulncheck.com/advisories/bdec-buffer-overflow-seh-overflow-egg-hunter

CVSS

Base:	9.8
Impact:	5.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Zadnje važnije ažuriranje

05-02-2026 - 20:47

Objavljeno

05-02-2026 - 17:16