bandiview (7.05) vuln PoC | CVE-2024-45870, CVE-2024-45871, CVE-2024-45872# bandiview-7.05-vuln-PoC
This repository contains a PoC for vulnerabilities uncovered in Bandiview 7.05 using fuzzing
- [CVE-2024-45870](https://nvd.nist.gov/vuln/detail/CVE-2024-45870) ( JXR File Parsing DoS Vulnerability )
- [CVE-2024-45871](https://nvd.nist.gov/vuln/detail/CVE-2024-45871) ( PSD File Parsing DoS Vulnerability )
- [CVE-2024-45872](https://nvd.nist.gov/vuln/detail/CVE-2024-45872) ( PSD File Parsing Stack Buffer Overflow )
### Details
- Software: [BandiView](https://kr.bandisoft.com/bandiview/)
- Version: v7.05 (2024/7/15, BuildNo=26122)
### Credit
- JaeHo Cho (@Jaecho6053)
- SongHyun Bae (@bshyuunn)
- JunSeo Bae (@V0xe1)
- LeeDong Ha (@GAP-dev)
<br>
<table>
<tr>
<th>Bandiview Changes Log</th>
</tr>
<tr>
<td>
<a href="https://heasarc.gsfc.nasa.gov/FTP/software/fitsio/c/docs/changes.txt">
<img width="602" alt="image" src="https://github.com/user-attachments/assets/f09aee30-c6fc-43bf-b07c-fce59ca96cf6" />
</a>
</td>
</tr>
</table>
[4.0K] /data/pocs/5f5bb0154a90e9112e8945247262103f0f7d68f6
├── [4.0K] CVE-2024-45870
│ ├── [187K] PoC.jxr
│ └── [ 1] README.md
├── [4.0K] CVE-2024-45871
│ ├── [1.4K] PoC.psd
│ └── [ 1] README.md
├── [4.0K] CVE-2024-45872
│ ├── [1.4K] PoC.psd
│ └── [ 1] README.md
└── [1008] README.md
3 directories, 7 files