6.7.3

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

bpsoft

NVD

Published: 2024-01-11

Updated: 2024-11-21

Summary

A denial service vulnerability has been found on Hex Workshop affecting version 6.7, an attacker could send a command line file arguments and control the Structured Exception Handler (SEH) records resulting in a service shutdown.

Vulnerable Configurations

Part	Description	Count
Application	Bpsoft Bpsoft HEX Workshop 6.7.0 Bpsoft HEX Workshop 6.7.2 Bpsoft HEX Workshop 6.7.3	3

References

https://https://www.incibe.es/en/incibe-cert/notices/aviso/buffer-overflow-vulnerability-hex-workshop
https://https://www.incibe.es/en/incibe-cert/notices/aviso/buffer-overflow-vulnerability-hex-workshop