A critical stack-based buffer overflow in JAD 1.5.8e-1kali1 enables attackers to execute shellcode by supplying oversized input strings during the decompilation process.

The software fails to perform boundary checks on input strings, specifically allowing strings exceeding 8150 bytes to overwrite the stack. This unauthenticated local vulnerability allows an attacker to overwrite return addresses and execute arbitrary shellcode within the application context.

Exploitation can lead to the total compromise of the host system's integrity and confidentiality if the utility is used to process untrusted files. The CVSS score of 9.8 emphasizes the extreme risk, as the vulnerability provides a direct path to arbitrary code execution on developer workstations.

Immediate Action: Discontinue use of JAD version 1.5.8e-1kali1 and update to the latest version or transition to a modern decompiler such as Jadx or Fernflower.

Proactive Monitoring: Audit developer environments for the presence of legacy JAD binaries and monitor for execution of shellcode patterns in memory.

Compensating Controls: Use Endpoint Detection and Response (EDR) tools to identify and block buffer overflow exploitation attempts at the process level.

Public Exploit Available: false

Immediate removal or replacement of the affected software is the only effective mitigation. Organizations must ensure that legacy development tools are included in their vulnerability management program to prevent them from becoming entry points for attackers.