CVE-2017-14290
HIGHSTDU Viewer 1.6.375 - Remote Code Execution via Crafted .jb2 File
Title source: llmDescription
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Heap Corruption starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-14290
Scores
CVSS v3
7.8
EPSS
0.0037
EPSS Percentile
29.3%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (1)
stdutility/stdu_viewer
1.6.375
Published
Sep 11, 2017
Tracked Since
Feb 18, 2026