2 matches found
CVE-2024-1112
CVE-2024-1112 is a heap-based buffer overflow in Resource Hacker (Angus Johnson) affecting version 3.6.0.92, allowing arbitrary code execution via a long filename argument. The vulnerability is documented across multiple connected sources, including a PoC exploit on GitHub that demonstrates using...
CVE-2012-6553
Resource Hacker 3.6.0.92 is affected by CVE-2012-6553 due to a heap-based buffer overflow in the PE resource section. An attacker can craft a Portable Executable whose resource string contains an abnormal number of tab or line feed characters, leading to arbitrary code execution on a vulnerable s...