GPSMapEdit LST File Buffer Overflow Vulnerability
BID:51327
Info
GPSMapEdit LST File Buffer Overflow Vulnerability
| Bugtraq ID: | 51327 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 09 2012 12:00AM |
| Updated: | Jan 09 2012 12:00AM |
| Credit: | Julien Ahrens |
| Vulnerable: |
Konstantin Galichsky GPSMapEdit 1.1.73.2 |
| Not Vulnerable: | |
Discussion
GPSMapEdit LST File Buffer Overflow Vulnerability
GPSMapEdit is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Attackers may exploit this issue to execute arbitrary code within the context of the application using the vulnerable control. Failed exploit attempts will result in a denial-of-service condition.
GPSMapEdit 1.1.73.2 is vulnerable; other versions may also be affected.
GPSMapEdit is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Attackers may exploit this issue to execute arbitrary code within the context of the application using the vulnerable control. Failed exploit attempts will result in a denial-of-service condition.
GPSMapEdit 1.1.73.2 is vulnerable; other versions may also be affected.
Exploit / POC
GPSMapEdit LST File Buffer Overflow Vulnerability
The following exploit is available:
The following exploit is available:
Solution / Fix
GPSMapEdit LST File Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
GPSMapEdit LST File Buffer Overflow Vulnerability
References:
References:
- GPSMapEdit Homepage (Konstantin Galichsky)