IntelliTamper Map Files Buffer Overflow Vulnerability
BID:18039
CVE-2006-2494 |Info
IntelliTamper Map Files Buffer Overflow Vulnerability
| Bugtraq ID: | 18039 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2006-2494 |
| Remote: | Yes |
| Local: | No |
| Published: | May 19 2006 12:00AM |
| Updated: | Jul 21 2008 10:58PM |
| Credit: | Devil00 |
| Vulnerable: |
IntelliTamper IntelliTamper 2.07 |
| Not Vulnerable: | |
Discussion
IntelliTamper Map Files Buffer Overflow Vulnerability
IntelliTamper is prone to a buffer-overflow vulnerability because the application fails to properly validate the size of attacker-supplied data before copying it into a finite-sized buffer.
This issue allows remote attackers to execute arbitrary machine code in the context of applications that use IntelliTamper. Failed exploit attempts will likely crash the application, denying service to legitimate users.
IntelliTamper 2.07 is vulnerable; other versions may also be affected.
IntelliTamper is prone to a buffer-overflow vulnerability because the application fails to properly validate the size of attacker-supplied data before copying it into a finite-sized buffer.
This issue allows remote attackers to execute arbitrary machine code in the context of applications that use IntelliTamper. Failed exploit attempts will likely crash the application, denying service to legitimate users.
IntelliTamper 2.07 is vulnerable; other versions may also be affected.
Exploit / POC
IntelliTamper Map Files Buffer Overflow Vulnerability
The following exploit code is available:
The following exploit code is available:
Solution / Fix
IntelliTamper Map Files Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
IntelliTamper Map Files Buffer Overflow Vulnerability
References:
References:
- IntelliTamper Homepage (IntelliTamper)