Flat Assembler 1.71.21 Stack-Based Buffer Overflow ROP

Flat Assembler 1.71.21 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input to the application. Attackers can craft malicious assembly input exceeding 5895 bytes to overwrite the instruction pointer and execute return-oriented programming chains for shell command execution.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

跨界内存写

Flat Assembler 缓冲区错误漏洞

Flat Assembler是Tomasz Grysztar个人开发者的一个支持多平台的汇编语言编译器。 Flat Assembler 1.71.21版本存在缓冲区错误漏洞，该漏洞源于栈缓冲区溢出，可能导致本地攻击者通过向应用程序提供超大输入执行任意代码。

N/A

N/A