Proview Disassembler Long File Name Handling Denial of Service Vulnerability

Bugtraq ID:	12856
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Mar 21 2005 12:00AM
Updated:	Mar 21 2005 12:00AM
Credit:	Discovery is credited to HaCkZaTaN <[email protected]>.
Vulnerable:	Proview Disassembler Proview Disassembler 1.6 b Beta Proview Disassembler Proview Disassembler 1.5 f
Not Vulnerable:

Proview Disassembler Long File Name Handling Denial of Service Vulnerability

Proview Disassembler (PVDasm) is reported prone to a remote denial of service vulnerability.

The issue presents itself when the application handles a file with a long name.

Reportedly, this can cause PVDasm to crash resulting in a denial of service condition.

It is not known whether this vulnerability can be leveraged to execute arbitrary code. This BID will be updated when more information becomes available.

PVDasm 1.6b Beta and prior versions are affected by this issue.

Proview Disassembler Long File Name Handling Denial of Service Vulnerability

An exploit is not required to leverage this issue.

Proview Disassembler Long File Name Handling Denial of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

Proview Disassembler Long File Name Handling Denial of Service Vulnerability

References:

• Proview Disassembler Home Page (Proview Disassembler)
  
• -==PVDasm Long Name Debug Vulnerability==- (HaCkZaTaN )