vendor:
Practical Music Search
by:
Juan Sacco
7.8
CVSS
HIGH
Stack-Based Overflow
119
CWE
Product Name: Practical Music Search
Affected Version From: 0.42
Affected Version To: 0.42
Patch Exists: YES
Related CWE: N/A
CPE: a:pms:pms:0.42
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: Kali i686 GNU/Linux
2018
PMS 0.42 Local Unauthenticated Stack-Based Overflow
PMS 0.42 is prone to a local unauthenticated stack-based overflow. The vulnerability is due to an unproper filter of user supplied input while reading the configuration file and parsing the malicious crafted values.
Mitigation:
Update to the latest version of PMS 0.42
