Description
A stack-based buffer overflow condition is a condition where the buffer
being overwritten is allocated on the stack (i.e., is a local variable
or, rarely, a parameter to a function). Buffer overflows generally lead to crashes. Other attacks leading to
lack of availability are possible, including putting the program into an
infinite loop. Buffer overflows often can be used to execute arbitrary code, which is
usually outside the scope of a program's implicit security policy. When the consequence is arbitrary code execution, this can often be used to subvert any other security service. This weakness is introduced during Architecture and Design, Implementation stages.
Latest vulnerabilities for CWE-121
References
Description of CWE-121 on Mitre website