Buffer Overflow Vulnerability in BearShare Lite by BearShare
CVE-2020-37010

9.8NONE

Key Information:

Vendor

Bearshareofficial

Status
Bearshare Lite
Vendor
CVE Published:
29 January 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2020-37010?

BearShare Lite 5.2.5 has a vulnerability that enables buffer overflow through the Advanced Search keywords input. This flaw allows attackers to submit a specially crafted payload via the search input, leading to potential arbitrary code execution by overwriting the EIP register and running shellcode. It's crucial for users of BearShare Lite to be aware of this vulnerability and take the necessary precautions.

Affected Version(s)

BearShare Lite 5.1.0 <= 5.2.5

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2020-37010 - Proof of Concept

References

https://www.exploit-db.com/exploits/48839
exploit
http://www.bearshareofficial.com/
product
http://www.oldversion.com.de/windows/bearshare-lite-5-2-5
product

CVSS V4

Score:
Severity:
NONE
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Christian Vierschilling
.