CVE-2016-20040

HIGH

TiEmu 3.03-nogdb+dfsg-3 Buffer Overflow via ROM Parameter

Title source: cna

Description

TiEmu 3.03-nogdb+dfsg-3 contains a buffer overflow vulnerability in the ROM parameter handling that allows local attackers to crash the application or execute arbitrary code. Attackers can supply an oversized ROM parameter to the tiemu command-line interface to overflow the stack buffer and overwrite the instruction pointer with malicious addresses.

Exploits (1)

exploitdb WORKING POC

by Juan Sacco · pythonlocallinux

https://www.exploit-db.com/exploits/39692

View Code ZIP pw:eip

References (3)

[Exploit] https://www.exploit-db.com/exploits/39692

[Product] http://lpg.ticalc.org/prj_tiemu/

[Third Party Advisory] https://www.vulncheck.com/advisories/tiemu-nogdb-dfsg-3-buffer-overflow-via-rom-parameter

Scores

CVSS v3 8.4

EPSS 0.0003

EPSS Percentile 6.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-22

Status published

Products (1)

ticalc/Texas Instrument Emulator 3.03

Published Mar 28, 2026

Tracked Since Mar 29, 2026