CVE-2025-1366 | MicroWord eScan Antivirus 7.0.32 on Linux VirusPopUp strcpy stack-based overflow

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this issue is the function strcpy of the component VirusPopUp. The manipulation leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2025-1366. The attack needs to be approached locally. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-1366 | MicroWord eScan Antivirus 7.0.32 on Linux VirusPopUp strcpy stack-based overflow

Post correlati

CVE-2024-11154 | PublishPress Revisions Plugin up to 3.5.15 on WordPress authorization

CVE-2024-37273 | Jan 0.4.12 File /v1/app/appendFileSync unrestricted upload

CVE-2024-56060 | HTML Forms Plugin up to 1.4.1 on WordPress cross site scripting

CVE-2024-51996 | Symfony up to 5.4.46/6.4.14/7.1.7 Username improper authentication