I have found a vulnerability in Stud_PE, a tool used to inspect the PE header of executable files. Stud_PE does not check the length of the internal file name (referenced to by Export Table) prior to copying to a stack-based buffer.
A proof of concept can be found here.
Update: This has been fixed as of version 2.6.0.8.
You can follow me on Twitter @waleedassar
Update: This has been fixed as of version 2.6.0.8.
You can follow me on Twitter @waleedassar
No comments:
Post a Comment