Previous articleBack to news listNext article
|
Sponsored links |
Want to become one of our authors and see your work published on ALLSeek.iNFO ?
|
| eZphotoshare Buffer Overflows Let Remote Users Execute Arbitrary Code |
|---|
Categorie: Vulnerability
Posted: 2003-12-05 by ReCall
Views: 432
Source: Click here
| Current Rating: Not rated
|
|
| Details |
|---|
Description: Peter Winter-Smith reported multiple buffer overflow vulnerabilities in eZphotoshare. A remote user can execute arbitrary code on the target system.
It is reported that a remote user can send a specially crafted 80 byte packet to eZphotoshare on port 10101 exactly eight times in succession to overwrite the ECX and EAX registers.
A demonstration exploit packet structure is provided (where $eax and $ecx are four bytes in length):
$packet = "GET /aaa" . $eax . $ecx . "a"x64;
A reomte user may be able to execute arbitrary code with the privileges of the target user, the report said.
It is also reported that a remote user can send a long packet to eZphotoshare on port 10101 to overwrite certain values in the system memory and execute arbitrary code.
Impact: A remote user can execute arbitrary code on the target system with the privileges of the user running eZphotoshare on the target system.
Solution: No solution was available at the time of this entry.
|
| Syndication |
|---|
Permalink Email this
The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=585
|
| User comments (post your comments ) |
|---|
Only registerd members can post comments and articles
|
|
Previous articleBack to news listNext article
|
