NASM Multiple Buffer Overflow Vulnerabilities
BID:29955
Info
NASM Multiple Buffer Overflow Vulnerabilities
| Bugtraq ID: | 29955 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2008-7177 |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 26 2008 12:00AM |
| Updated: | May 07 2015 05:28PM |
| Credit: | NASM |
| Vulnerable: |
NASM NASM 2.0.3 NASM NASM 2.0.2 NASM NASM 2.0.1 NASM NASM 2.0 |
| Not Vulnerable: |
NASM NASM 2.3.1 |
Discussion
NASM Multiple Buffer Overflow Vulnerabilities
NASM is prone to multiple buffer-overflow vulnerabilities because the software fails to properly bounds-check user-supplied data.
An attacker can exploit these issues to execute arbitrary machine code in the context of affected applications. Failed exploit attempts will likely cause denial-of-service conditions.
The issues affect versions prior to NASM 2.03.01.
NASM is prone to multiple buffer-overflow vulnerabilities because the software fails to properly bounds-check user-supplied data.
An attacker can exploit these issues to execute arbitrary machine code in the context of affected applications. Failed exploit attempts will likely cause denial-of-service conditions.
The issues affect versions prior to NASM 2.03.01.
Exploit / POC
NASM Multiple Buffer Overflow Vulnerabilities
Currently we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
NASM Multiple Buffer Overflow Vulnerabilities
Solution:
Vendor fixes are available. Please see the references for more information.
Solution:
Vendor fixes are available. Please see the references for more information.
References
NASM Multiple Buffer Overflow Vulnerabilities
References:
References: