CVE-2019-25661: Remote Process Explorer Buffer Overflow
Platform
windows
Component
remote-process-explorer
CVE-2019-25661 represents a local buffer overflow vulnerability discovered in Remote Process Explorer versions 1.0.0 through 1.0.0.16. An attacker can trigger a denial of service by crafting a malicious payload and pasting it into the computer name textbox within the Add Computer dialog, leading to a crash and potential corruption of exception handlers. Currently, no official patch has been released to address this vulnerability.
How to fix
Actualice a una versión corregida de Remote Process Explorer. La vulnerabilidad se encuentra en la versión 1.0.0.16 y se debe evitar su uso. Consulte el sitio web del proveedor para obtener más información sobre las actualizaciones disponibles.
Frequently asked questions
What is CVE-2019-25661?
CVE-2019-25661 is a buffer overflow vulnerability in Remote Process Explorer 1.0.0–1.0.0.16. It allows an attacker to cause a denial of service by exploiting the Add Computer dialog and crafting a malicious string.
Am I affected by CVE-2019-25661?
You are potentially affected if you are using Remote Process Explorer versions 1.0.0 through 1.0.0.16. If you are running a different version, you are likely not vulnerable.
How can I fix or mitigate CVE-2019-25661?
Currently, there is no official patch available for this vulnerability. Monitor for updates from the vendor and consider disabling or removing the vulnerable component until a fix is released.
Monitor your dependencies automatically
Get notified when new vulnerabilities affect your projects. Free forever.
Start free