Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Base64 Decoder 1.1.2 Local Buffer Overflow SEH Egghunter
Vulnerability Description
Base64 Decoder 1.1.2 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by triggering a structured exception handler (SEH) overwrite. Attackers can craft a malicious input file that overflows a buffer, overwrites the SEH chain with a POP-POP-RET gadget address, and uses an egghunter payload to locate and execute shellcode for code execution.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Base64 Decoder 缓冲区错误漏洞
Vulnerability Description
Base64 Decoder是4Mhz开源的一个base64解码器。 Base64 Decoder 1.1.2版本存在缓冲区错误漏洞,该漏洞源于基于栈的缓冲区溢出,可能导致本地攻击者通过触发结构化异常处理程序覆盖执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A