Espruino Buffer Overflow Vulnerability (CNVD-2018-10890)
Espruino is a JavaScript interpreter for use in microcontrollers. A stack buffer overflow vulnerability exists in versions of Espruino prior to 1.99, which stems from a failure to properly use the 'strncpy' function in the jslex.c file. An attacker can exploit this vulnerability with a specially...