PicoC is a lightweight C interpreter. A buffer overflow vulnerability exists in PicoC version 3.2.2, which stems from a boundary error in the StringStrncpy function in cstdlib/string.c when ExpressionParseFunctionCall is called while processing untrusted input. An attacker can exploit the vulnerability to cause a denial of service to the program.
CPE | Name | Operator | Version |
---|---|---|---|
picoc picoc | eq | 3.2.2 |