W3C Amaya Multiple Remote Buffer Overflow Vulnerabilities
BID:17507
Info
W3C Amaya Multiple Remote Buffer Overflow Vulnerabilities
| Bugtraq ID: | 17507 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 13 2006 12:00AM |
| Updated: | Apr 13 2006 10:37PM |
| Credit: | Discovered by Thomas Waldegger <[email protected]>. |
| Vulnerable: |
W3C Amaya 9.4 |
| Not Vulnerable: |
W3C Amaya 9.5 |
Discussion
W3C Amaya Multiple Remote Buffer Overflow Vulnerabilities
W3C Amaya is susceptible to multiple remote buffer-overflow vulnerabilities. These issues are due to the application's failure to properly bounds-check user-supplied data before copying it to insufficiently sized memory buffers.
Remote attackers may exploit this issue to execute arbitrary machine code in the context of the affected application. Failed exploit attempts likely crash the application.
Amaya version 9.4 is affected by these issues; other versions may also be vulnerable.
W3C Amaya is susceptible to multiple remote buffer-overflow vulnerabilities. These issues are due to the application's failure to properly bounds-check user-supplied data before copying it to insufficiently sized memory buffers.
Remote attackers may exploit this issue to execute arbitrary machine code in the context of the affected application. Failed exploit attempts likely crash the application.
Amaya version 9.4 is affected by these issues; other versions may also be vulnerable.
Exploit / POC
W3C Amaya Multiple Remote Buffer Overflow Vulnerabilities
The following samples will cause Amaya to crash.
<colgroup compact="Ax200">
<textarea rows="Ax200">
<legend color="Ax200">
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
The following samples will cause Amaya to crash.
<colgroup compact="Ax200">
<textarea rows="Ax200">
<legend color="Ax200">
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
W3C Amaya Multiple Remote Buffer Overflow Vulnerabilities
Solution:
The reporter of this issue states that Amaya version 9.5 is not affected by these issues. Symantec has not confirmed this. Users are encouraged to contact the vendor for further information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
Solution:
The reporter of this issue states that Amaya version 9.5 is not affected by these issues. Symantec has not confirmed this. Users are encouraged to contact the vendor for further information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
References
W3C Amaya Multiple Remote Buffer Overflow Vulnerabilities
References:
References: