CyberSec.Space Logo
Back to CVE Browser

CVE-2019-7629

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0930%
EPSS Percentile20.66th
PublishedFeb 18, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client.

Affected Platforms (CPE)

πŸ“¦
Tintin\+\+ Project

Tintin\+\+

= 2.01.6
πŸ“¦
Tintin\+\+ Project

Wintin\+\+

= 2.01.6

References & Advisories

πŸ”— https://tintin.sourceforge.io/forum/viewtopic.php?f=1&t=2584&sid=31b77bb001faea9269bf224280960e29#p10505
πŸ”— https://tintin.sourceforge.io/news.php
πŸ”— https://trustfoundry.net/cve-2019-7629-rce-in-an-open-source-mud-client/
πŸ”— https://tintin.sourceforge.io/forum/viewtopic.php?f=1&t=2584&sid=31b77bb001faea9269bf224280960e29#p10505
πŸ”— https://tintin.sourceforge.io/news.php
πŸ”— https://trustfoundry.net/cve-2019-7629-rce-in-an-open-source-mud-client/

Related Vulnerabilities

CVE-2008-067110.0

Stack-based buffer overflow in the add_line_buffer function in TinTin++ 1.97.9 and WinTin++ 1.97.9 allows remote attackers to exec...

CVE-2008-06737.5

TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of an inbound file-transfer request, before the user has an opportunit...

CVE-2008-06725.0

The process_chat_input function in TinTin++ 1.97.9 and WinTin++ 1.97.9 allows remote attackers to cause a denial of service (appli...

CVE-2019-623510.0

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12...