vendor:
i.Hex
by:
metacom
5.5
CVSS
MEDIUM
Local Crash
CWE
Product Name: i.Hex
Affected Version From: i.Hex-v0.98 (Win32 Release)
Affected Version To: i.Hex-v0.98 (Win32 Release)
Patch Exists: NO
Related CWE:
CPE: a:memecode:i.Hex:0.98
Platforms Tested: Windows
2014
i.Hex Local Crash Poc
i.Hex is a small and free graphical Hex Editor for Windows. The vulnerability allows an attacker to create a malicious iHex.xml file that can crash the i.Hex software.
Mitigation:
There is no known mitigation for this vulnerability.