Volerion logoVolerion
Volerion logoVolerion

Intercom MaLion and MaLionCloud Stack-Based Buffer Overflow Vulnerability in HTTP Header Processing Allowing Arbitrary Code Execution

Vulnerability

A stack-based buffer overflow vulnerability has been identified in the Security Point (Windows) application of MaLion and MaLionCloud, both provided by Intercom, Inc. This vulnerability arises from improper handling of HTTP headers, allowing remote, unauthenticated attackers to send specially crafted requests that could be exploited to execute arbitrary code with SYSTEM privileges on the affected Windows machines. This issue affects MaLion versions prior to 7.1.1.9 and MaLionCloud versions prior to 7.2.0.1.

Impact

Exploitation of this vulnerability allows for arbitrary code execution with SYSTEM privileges on the affected Windows system.

Remediation

Users are advised to update to the latest version of MaLion or MaLionCloud. The developer has released versions 7.1.1.9 or later for MaLion and 7.2.0.1 or later for MaLionCloud, both of which address this vulnerability.

Added: Nov 25, 2025, 8:19 AM
Updated: Nov 25, 2025, 8:19 AM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
10.0
exploitability
4.7
remediation
7.7
relevance
1.1
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.