CVE-2018-25224
CVE-2018-25224 affects PMS 0.42. The vulnerability is a stack-based buffer overflow in the configuration file parser that allows local, unauthenticated attackers to execute arbitrary code by supplying oversized input; shell commands can be executed via return-oriented programming gadgets. The pro...