GDB Process_Coff_Symbol UPX File Buffer Overflow Vulnerability
BID:24291
Info
GDB Process_Coff_Symbol UPX File Buffer Overflow Vulnerability
| Bugtraq ID: | 24291 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 04 2007 12:00AM |
| Updated: | Jun 04 2007 10:50PM |
| Credit: | KaiJern, Lau is credited with the discovery of this vulnerability. |
| Vulnerable: |
GNU GDB 6.6 |
| Not Vulnerable: | |
Discussion
GDB Process_Coff_Symbol UPX File Buffer Overflow Vulnerability
GDB is prone to a buffer-overflow vulnerability because it fails to properly check bounds when handling specially crafted executable files.
Attackers could leverage this issue to run arbitrary code outside of a restricted environment, which may lead to privilege escalation. Symantec has not confirmed code execution.
GDB is prone to a buffer-overflow vulnerability because it fails to properly check bounds when handling specially crafted executable files.
Attackers could leverage this issue to run arbitrary code outside of a restricted environment, which may lead to privilege escalation. Symantec has not confirmed code execution.
Exploit / POC
GDB Process_Coff_Symbol UPX File Buffer Overflow Vulnerability
The following proof-of-concept exploit file demonstrates this issue by crashing GDB:
The following proof-of-concept exploit file demonstrates this issue by crashing GDB:
Solution / Fix
GDB Process_Coff_Symbol UPX File Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
GDB Process_Coff_Symbol UPX File Buffer Overflow Vulnerability
References:
References:
- GBD UPX File Handling Buffer Overflow Vulnerability (xwings)
- GDB Homepage (GNU)