Skip to content

Latest commit

 

History

History
 
 

CVE-2004-1278

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
74.abc
74.abc
 
 
74.abc.zip
74.abc.zip
 
 
README.md
README.md
 
 

README.md

CVE-2004-1278

Experiment Environment

Ubuntu 11.04

INSTALL & Configuration

wget https://github.com/mudongliang/source-packages/raw/master/CVE-2004-1278/jcabc2ps-20021002-src.tar.gz
tar -xvf jcabc2ps-20021002-src.tar.gz
cd jcabc2ps
make

Problems in Installation & Configuration

How to trigger vulnerability

./jcabc2ps 74.abc > 74.ps

PoCs

jcabc2ps switch_voice() overflows t1 buffer

jcabc2ps Buffer Overflow in switch_voice() Lets Remote Users Execute Arbitrary Code

ABC2PS/JCABC2PS Voice Field Buffer Overflow Vulnerability

ABC2PS/JCABC2PS 1.2 - Voice Field Buffer Overflow

Vulnerability Details & Patch

Root Cause

In parse.c, switch_voice() copies any amount of data into the 201-byte t1[] array.

Stack Trace

References