CVE-2020-36961
Unknown
Unknown - Not Provided
Buffer Overflow in 10-Strike Network Inventory Allows Remote Code Execution
Publication date: 2026-01-28
Last updated on: 2026-01-28
Assigner: VulnCheck
Description
Description
10-Strike Network Inventory Explorer 8.65 contains a buffer overflow vulnerability in exception handling that allows remote attackers to execute arbitrary code. Attackers can craft a malicious file with 209 bytes of padding and a specially constructed Structured Exception Handler to trigger code execution.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| 10-strike | network_inventory_explorer | 8.65 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a buffer overflow in the exception handling of 10-Strike Network Inventory Explorer 8.65. It allows remote attackers to execute arbitrary code by crafting a malicious file with 209 bytes of padding and a specially constructed Structured Exception Handler that triggers code execution.
How can this vulnerability impact me? :
The vulnerability can allow remote attackers to execute arbitrary code on the affected system, potentially leading to unauthorized control, data compromise, or disruption of services.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70