CVE-2025-0720 | Microword eScan Antivirus 7.0.32 on Linux Folder Watch List rtscanner removeExtraSlashes stack-based overflow

A vulnerability was found in Microword eScan Antivirus 7.0.32 on Linux. It has been rated as problematic. Affected by this issue is the function removeExtraSlashes of the file /opt/MicroWorld/sbin/rtscanner of the component Folder Watch List Handler. The manipulation leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2025-0720. The attack needs to be approached locally. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-0720 | Microword eScan Antivirus 7.0.32 on Linux Folder Watch List rtscanner removeExtraSlashes stack-based overflow

Post correlati

CVE-2024-20516 | Cisco Small Business RV Router up to 4.2.3.14 Web-based Management Interface heap-based overflow (cisco-sa-sb-rv04x_rv32x_vulns-yJ2OSDhV)

CVE-2024-49325 | wpdiscover Photo Gallery Builder Plugin up to 3.0 on WordPress authorization

CVE-2024-42276 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 nvme-pci nvme_map_data null pointer dereference

CVE-2024-43822 | Linux Kernel up to 6.10.2 PCM6240 devm_kzalloc null pointer dereference (fa6f16eff732/3722873d49a1)