Bitsmith Software Personal Knowbase 'knowbase.exe' Local Buffer Overflow Vulnerability
BID:52826
Info
Bitsmith Software Personal Knowbase 'knowbase.exe' Local Buffer Overflow Vulnerability
| Bugtraq ID: | 52826 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 30 2012 12:00AM |
| Updated: | Mar 30 2012 12:00AM |
| Credit: | Julien Ahrens of Vulnerability Research Laboratory |
| Vulnerable: |
Bitsmith Software Personal Knowbase 3.2.3 |
| Not Vulnerable: | |
Discussion
Bitsmith Software Personal Knowbase 'knowbase.exe' Local Buffer Overflow Vulnerability
Personal Knowbase is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Local attackers can exploit this issue to run arbitrary code with elevated privileges. Failed exploit attempts can result in a denial-of-service condition.
Personal Knowbase 3.2.3 is vulnerable; other versions may also be affected.
Personal Knowbase is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Local attackers can exploit this issue to run arbitrary code with elevated privileges. Failed exploit attempts can result in a denial-of-service condition.
Personal Knowbase 3.2.3 is vulnerable; other versions may also be affected.
Exploit / POC
Bitsmith Software Personal Knowbase 'knowbase.exe' Local Buffer Overflow Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Bitsmith Software Personal Knowbase 'knowbase.exe' Local Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Bitsmith Software Personal Knowbase 'knowbase.exe' Local Buffer Overflow Vulnerability
References:
References:
- Bitsmith PS Knowbase 3.2.3 - Buffer Overflow Vulnerability (Julien Ahrens)
- Personal Knowbase Homepage (Bitsmith Software)