Home / Vulnerability Intelligence / CVE-2016-20049

CVE-2016-20049 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: March 28, 2026

JAD - Buffer Overflow

Published: March 28, 2026Updated: March 28, 2026Remote Exploitable

Overview

JAD <= 1.5.8e-1kali1 contains a stack-based buffer overflow caused by oversized input exceeding buffer boundaries, letting attackers execute arbitrary code by overflowing the stack with crafted input.

Severity & Score

Severity: Critical

CVSS Score: 9.8

Impact

Attackers can execute arbitrary code remotely, potentially gaining full control over the affected system.

Mitigation

Update to the latest version of JAD to address the buffer overflow vulnerability.

References

https://www.exploit-db.com/exploits/42076
https://www.vulncheck.com/advisories/jad-8e-1kali1-stack-based-buffer-overflow-remote-code-execution
http://www.varaneckas.com/jad/

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2016-20049
Severity: Critical
CVSS Score: 9.8
Type: buffer_overflow
Status: new

CWE

CWE-787

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H