A classic Stack-based buffer overflow exists in the zmLoadUser() function in zm_user.cpp of the zmu binary in ZoneMinder through 1.32.3, allowing an unauthenticated attacker to execute code via a long username.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-01-28T20:00:00Z

Updated: 2024-09-17T02:58:19.058Z

Reserved: 2019-01-28T00:00:00Z

Link: CVE-2019-6991

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2019-01-28T20:29:00.373

Modified: 2020-08-24T17:37:01.140

Link: CVE-2019-6991

cve-icon Redhat

No data.