Nieuws

CVE-2017-6193 APNGDis width / height Buffer Overflow

# Exploit Title: APNGDis width / height Buffer Overflow # Date: 14-03-2017 # Exploit Author: Alwin Peppels # Vendor Homepage: http://apngdis.sourceforge.net/ # Software Link: https://sourceforge.net/projects/apngdis/files/2.8/ # Version: 2.8 # Tested on: Linux Debian / Windows 7 # CVE : CVE-2017-6193 Here are the first bytes of the PoC; positions +0x10 through +0x17 are malformed to…

Lees meer

CVE-2017-6191 APNGDis filename Buffer Overflow

# Exploit Title: APNGDis filename Buffer Overflow # Date: 14-03-2017 # Exploit Author: Alwin Peppels # Vendor Homepage: http://apngdis.sourceforge.net/ # Software Link: https://sourceforge.net/projects/apngdis/files/2.8/ # Version: 2.8 # Tested on: Linux Debian / Windows 7 # CVE : CVE-2017-6191 A textbook example of a buffer overflow; a fixed size buffer gets allocated with szPath[256], and the…

Lees meer