Heap-based buffer overflow in the server in xArrow prior to 3.4.1 allows remote malicious users to execute arbitrary code via packets that trigger an invalid free operation.
xarrow xarrow