File ELF 4.x - Header Buffer Overflow

EDB-ID:

24784

Author:

anonymous

Type:

remote

Platform:

Linux

Published:

2004-11-29

source: https://www.securityfocus.com/bid/11771/info

The file command is affected by a buffer overflow vulnerability. This issue is due to a failure of the application to properly validate string lengths in the affected file prior to copying them into static process buffers.

An attacker may leverage this issue to execute arbitrary code with the privileges of a user that processes the malicious file with the affected utility. This may be leveraged to escalate privileges or to gain unauthorized access.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/24784.zip