Critical severity9.8NVD Advisory· Published Jan 10, 2018· Updated Jun 17, 2026
CVE-2017-17946
CVE-2017-17946
Description
A buffer overflow in Handy Password 4.9.3 allows remote attackers to execute arbitrary code via a long "Title name" field in "mail box" data that is mishandled in an "Open from mail box" action.
Affected products
1- Range: <=4.9.3
Patches
Vulnerability mechanics
References
2- seclists.org/fulldisclosure/2018/Jan/22nvdMailing ListThird Party Advisory
- sidechannel.tempestsi.com/password-manager-flaw-allows-for-arbitrary-command-execution-b6bb273206b1nvdThird Party Advisory
News mentions
0No linked articles in our index yet.