Gửi #97000: elf-parser project has DoS vulnerabilitythông tin

tiêu đềelf-parser project has DoS vulnerability
Mô tảIn the elf-parser project, elf_parser.cpp:66 in elf_parser::Elf_parser::get_segments() exist a denial of service vulnerability. Attackers can cause denial of service through carefully constructed malicious files. When open this malicious file, the program will generate a wild pointer.You can access ASAN report or run the poc file see this DoS vulnerability be triggered. Through GDB analysis, the reason for this wild pointer may be : ``` at ../elf_parser.cpp:66 66 segment.segment_physaddr = phdr[i].p_paddr; ```
Nguồn⚠️ https://github.com/10cksYiqiyinHangzhouTechnology/elf-parser_segments_poc
Người dùng
 10cksYiqiyinHangzhouTechnology (UID 41666)
Đệ trình02/03/2023 13:47 (cách đây 3 những năm)
Kiểm duyệt02/03/2023 19:16 (5 hours later)
Trạng tháiđược chấp nhận
Mục VulDB222222 [finixbit elf-parser elf_parser.cpp get_segments Từ chối dịch vụ]
điểm20

Do you need the next level of professionalism?

Upgrade your account now!