Code-Projects Police Station Management System Buffer Overflow Vulnerability

A critical buffer overflow vulnerability has been identified in Code-Projects Police Station Management System version 1.0. The issue arises in the 'criminal::display' function within 'source.cpp', part of the 'Display Record' component. The vulnerability is caused by the improper handling of the 'N' argument, which allows for memory corruption by overwriting adjacent memory locations. This could potentially lead to arbitrary code execution or cause the program to crash. The vulnerability can be exploited locally.

Impact

Exploitation of this vulnerability allows for a buffer overflow, which can be used to overwrite memory and potentially execute arbitrary code.

Reproduction

The vulnerability can be reproduced by manipulating the 'N' argument in the 'criminal::display' function of the Police Station Management System. The 'gets' function is used to read user input for the convict ID, creating an opportunity to overflow the buffer.