Terminal Services Manager 3.1 contains a stack-based buffer overflow vulnerability in the computer names field that allows local attackers to execute arbitrary …

Terminal Services Manager 3.1 contains a critical stack-based buffer overflow vulnerability in the computer names field. The vulnerability allows local attackers to execute arbitrary code by exploiting structured exception handling (SEH). Attackers can craft malicious input files containing shellcode and jump instructions that overwrite the SEH handler pointer. The exploitation occurs when malicious files are imported through the add computers wizard feature. This vulnerability enables execution of arbitrary payloads including calc.exe or other malicious code. The flaw represents a significant local privilege escalation risk for systems running the affected Terminal Services Manager version.