A stack-based buffer overflow condition exists in WOSDefaultHttpModule.dll when processing a long URL path starting with /woshome

A stack-based buffer overflow vulnerability has been identified in WOSDefaultHttpModule.dll. The vulnerability occurs when the module processes excessively long URL paths that begin with '/woshome'. This condition can lead to buffer overflow attacks that may allow attackers to execute arbitrary code or cause denial of service. The vulnerability is tracked as CVE-2026-8362 and has been assigned a high severity rating. Security researchers from Tenable have published additional analysis of this vulnerability.