PLIB 'ulSetError()' Function Remote Buffer Overflow Vulnerability
BID:51152
Info
PLIB 'ulSetError()' Function Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 51152 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2011-4620 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 20 2011 12:00AM |
| Updated: | Apr 13 2015 09:59PM |
| Credit: | Andrés Gómez |
| Vulnerable: |
TORCS TORCS 1.3.1 SuSE openSUSE 12.1 SuSE openSUSE 11.4 PLIB PLIB 1.8.5 Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 |
| Not Vulnerable: | |
Discussion
PLIB 'ulSetError()' Function Remote Buffer Overflow Vulnerability
PLIB is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
PLIB 1.8.5 is affected; other versions may also be vulnerable.
PLIB is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
PLIB 1.8.5 is affected; other versions may also be vulnerable.
Exploit / POC
PLIB 'ulSetError()' Function Remote Buffer Overflow Vulnerability
The following exploit code example is available:
The following exploit code example is available:
Solution / Fix
PLIB 'ulSetError()' Function Remote Buffer Overflow Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
PLIB 'ulSetError()' Function Remote Buffer Overflow Vulnerability
References:
References:
- PLIB Homepage (PLIB)
- TORCS Homepage (SourceForge)