PT-2008-4567 · Ollydbg+1 · Ollydbg+1

Defsanguje

Published

2008-07-11

Updated

2017-09-29

CVE-2008-3148

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: OllyDBG version 1.10 ImpREC version 1.7f

Description: The issue is a stack-based buffer overflow that allows user-assisted attackers to execute arbitrary code via a crafted DLL file containing a long string.

Recommendations: For OllyDBG version 1.10, avoid using crafted DLL files until a patch is available. For ImpREC version 1.7f, restrict the use of DLL files to minimize the risk of exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2008-3148

Affected Products

Imprec

Ollydbg

PT-2008-4567 · Ollydbg+1 · Ollydbg+1

CVE-2008-3148

Weakness Enumeration

Related Identifiers

Affected Products

References · 5