Friday, January 27, 2012

Stud_PE Internal File Name Buffer Overflow

I have found a vulnerability in Stud_PE, a tool used to inspect the PE header of executable files. Stud_PE does not check the length of the internal file name (referenced to by Export Table) prior to copying to a stack-based buffer.
A proof of concept can be found here.

Update: This has been fixed as of version 2.6.0.8.

You can follow me on Twitter @waleedassar 

No comments:

Post a Comment