Gh0st control terminal remote heap-overflow-vulnerability warning-the black bar safety net

2009-05-18T00:00:00
ID MYHACK58:62200923282
Type myhack58
Reporter 佚名
Modified 2009-05-18T00:00:00

Description

Source: The Mirage mailing list

Release time:2009-5-18 * Update time:2009-5-18 Severity:high Threat level:control the remote host Error type:boundary check error Use:the host mode

Affected systems Gh0st3. 6 all previous versions

Does not affect the system

Unknown Detailed description Gh0st discovered vulnerabilities, these vulnerabilities can be user to use, from the controlled terminal to the control terminal to send malicious code, to achieve control of the main control end of the host.

1)gh0st3. 6\gh0st\FileManagerDlg. cpp CFileManagerDlg::CFileManagerDlg function memcpy(m_bRemoteDriveList, m_pContext->m_DeCompressionBuffer. GetBuffer(1), m_pContext->m_DeCompressionBuffer. GetBufferLen() - 1);Error using packet length, resulting in a buffer overflow.

Test code

Solution

Related information email: kissxiaotutu@hotmail.com Web: http://www.cisrg.org