DOMJudge Receive Function Remote Buffer Overflow Vulnerability
BID:24218
Info
DOMJudge Receive Function Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 24218 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 29 2007 12:00AM |
| Updated: | May 30 2007 12:04AM |
| Credit: | Lennert Buytenhek is credited with discovering this issue. |
| Vulnerable: |
DOMjudge DOMjudge 2.0 |
| Not Vulnerable: |
DOMjudge DOMjudge 2.0.0 RC1 |
Discussion
DOMJudge Receive Function Remote Buffer Overflow Vulnerability
DOMjudge is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
An attacker may exploit this issue by enticing victims into opening a malicious email link.
Successful exploits may allow attackers to execute arbitrary code in the context of the application. Failed attempts may cause denial-of-service conditions.
This issue affects versions of DOMjudge prior to 2.0.0 RC1.
DOMjudge is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
An attacker may exploit this issue by enticing victims into opening a malicious email link.
Successful exploits may allow attackers to execute arbitrary code in the context of the application. Failed attempts may cause denial-of-service conditions.
This issue affects versions of DOMjudge prior to 2.0.0 RC1.
Exploit / POC
DOMJudge Receive Function Remote Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
DOMJudge Receive Function Remote Buffer Overflow Vulnerability
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Solution:
The vendor released an update to address this issue. Please see the references for more information.
References
DOMJudge Receive Function Remote Buffer Overflow Vulnerability
References:
References:
- DOMJudge Homepage (DOMJudge )
- DOMjudge Release Notes Version 2.0.0 RC1 (DOMjudge )