We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
One of the goals of Exercise 2 is to find CVE-2009-3895. However, the Solutions file provided is for CVE-2006-4168.
CVE-2006-4168 causes heap-based buffer overflow in exif_entry_fix by assigning the wrong size due to Integer overflow in exif_data_load_data_entry.
Also, CVE-2009-3895 was patched in version 0.6.19, so the provided crash file should crash in version 0.6.18. But it isn't.
So the crash file provided is CVE-2006-4168.
This is gdb from the crash file provided.
This is a crash file run in version 0.6.18.
The text was updated successfully, but these errors were encountered:
No branches or pull requests
One of the goals of Exercise 2 is to find CVE-2009-3895.
However, the Solutions file provided is for CVE-2006-4168.
CVE-2006-4168 causes heap-based buffer overflow in exif_entry_fix by assigning the wrong size due to Integer overflow in exif_data_load_data_entry.
Also, CVE-2009-3895 was patched in version 0.6.19, so the provided crash file should crash in version 0.6.18. But it isn't.
So the crash file provided is CVE-2006-4168.
This is gdb from the crash file provided.
This is a crash file run in version 0.6.18.
The text was updated successfully, but these errors were encountered: