Windows XP Registry Editor buffer overflow vulnerability-vulnerability warning-the black bar safety net

2014-04-17T00:00:00
ID MYHACK58:62201444874
Type myhack58
Reporter 佚名
Modified 2014-04-17T00:00:00

Description

Windows XP Registry Editor buffer overflow vulnerability

漏洞 文件 regedit.exe Version: 5.1.2600.5512 Test environment is win xp sp3

!

Resolve issues, resulting in buffer overflow vulnerabilities.

the poc structure is very simple. I was thus constructed.

1 free to find a registry, 打开注册表项搜索Notepad.exe

2 find after the export, named as poc. reg

3 in the file path added to the 100H"..\"

4 Save. Click. To join the registry

5 Open the registry, find the just newly added that one. Click on the export. Enter a file name.

6 this time regdit. exe crashed.

poc. REG information of the following documents in the form of text saved. Rename it to poc. REG)

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT*\OpenWithList................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................\Notepad.exe]

Note that the poc within the single slash, not double slash. !

Repair solutions:

Rewrite the parsing code