UltraDefrag FindFiles Function Buffer Overflow Vulnerability
BID:25102
Info
UltraDefrag FindFiles Function Buffer Overflow Vulnerability
| Bugtraq ID: | 25102 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jul 27 2007 12:00AM |
| Updated: | Jul 30 2007 06:55PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
Dmitri Arkhangelski UltraDefrag 1.0.3 Dmitri Arkhangelski UltraDefrag 1.0.2 Dmitri Arkhangelski UltraDefrag 1.0.1 Dmitri Arkhangelski UltraDefrag 1.0 |
| Not Vulnerable: |
Dmitri Arkhangelski UltraDefrag 1.0.4 |
Discussion
UltraDefrag FindFiles Function Buffer Overflow Vulnerability
UltraDefrag is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data.
Successfully exploiting this issue allows attackers to execute arbitrary machine code with SYSTEM-level privileges, facilitating the complete compromise of affected computers.
Versions prior to UltraDefrag 1.0.4 are vulnerable to this issue.
UltraDefrag is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data.
Successfully exploiting this issue allows attackers to execute arbitrary machine code with SYSTEM-level privileges, facilitating the complete compromise of affected computers.
Versions prior to UltraDefrag 1.0.4 are vulnerable to this issue.
Exploit / POC
UltraDefrag FindFiles Function Buffer Overflow Vulnerability
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
UltraDefrag FindFiles Function Buffer Overflow Vulnerability
Solution:
The vendor has released UltraDefrag 1.0.4 to address this issue; please see the references for details.
Solution:
The vendor has released UltraDefrag 1.0.4 to address this issue; please see the references for details.
References
UltraDefrag FindFiles Function Buffer Overflow Vulnerability
References:
References:
- UltraDefrag HISTORY.TXT (Dmitri Arkhangelski)
- UltraDefrag Home Page (Dmitri Arkhangelski)