What is CVE-2019-16724?

CVE-2019-16724 is a vulnerability in N/a. Published 2019-09-24.

Is CVE-2019-16724 known to be exploited?

10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2019-16724

File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by exploiting a Structured Exception Handler (SEH) based buffer overflow in an HTTP POST parameter, a similar issue to CVE-2010-2330 and CVE-2010-2331.

EPSS: 0.857 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

nanabingies/CVE-2019-16724
rapid7/metasploit-framework
0xhuesca/CVE-2019-18655
ARPSyndicate/cvemon
FULLSHADE/OSCE
GihanJ/Structured-Exception-Handling-SEH-Buffer-Overflow
Mrnmap/ShellCode
developer3000S/PoC-in-GitHub
n0-traces/cve_
shanekhantaun9/win32-exploit-development

References

packetstormsecurity.com/files/154586/File-Sharing-Wizard-1.5.0-SEH-Buffer-Overf… (x_refsource_MISC)
Exploit Database (exploit, x_refsource_EXPLOIT-DB)
packetstormsecurity.com/files/154777/File-Sharing-Wizard-1.5.0-POST-SEH-Overflo… (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-16724?: CVE-2019-16724 is a vulnerability in N/a. Published 2019-09-24.
Is CVE-2019-16724 known to be exploited?: 10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.