Lucene search
ATmaCAEDB-ID:677HistoryDec 06, 2004 - 12:00 a.m.
GetRight 5.2a - '.grs' Skin File Buffer Overflow
2004-12-0600:00:00
ATmaCA
www.exploit-db.com
30
AI Score
7.4
Confidence
Low
GetRight Skin File (*.grs) Buffer Overflow May Let Remote Users Run Arbitrary
Code
Application: GetRight
Headlight Software
www.getright.com
Author:
ATmaCA <[email protected]>
a remote user can create a malicious skin file (*.grs) that, when loaded by the
target user, will trigger a buffer overflow in DUNZIP32.DLL (4.0.0.3) and
potentially execute arbitrary code.
AFFECTED VERSION:
Versions verified to be vulnerable:
GetRight 5.2a and prior versions are affected.
Solutions:
There was no response.
Exploit:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/677.grs (c_skin.grs)
When you copy or click this link, getright automaticly download and try to load
crafted skin and will trigger buffer overflow
# milw0rm.com [2004-12-06]Related
saint
saint
Windows compressed folders buffer overflow
2006-05-15 00:00:00
Windows compressed folders buffer overflow
2006-05-15 00:00:00
Windows compressed folders buffer overflow
2006-05-15 00:00:00
cvelist
cvelist
CVE-2004-0575
2004-10-16 04:00:00
CVE-2004-1094
2004-12-01 05:00:00
exploitdb
exploitdb
Microsoft Windows - Compressed Zipped Folders (MS04-034)
2004-11-19 00:00:00
cve
cve
CVE-2004-0575
2004-11-03 05:00:00
CVE-2004-1094
2005-01-10 05:00:00
nvd
nvd
CVE-2004-0575
2004-11-03 05:00:00
CVE-2004-1094
2005-01-10 05:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
nessus
nessus
MS04-034: Vulnerability in zipped folders may allow code execution (873376)
2004-10-12 00:00:00
cert
cert
Microsoft Windows processing of zip files contains a buffer overflow
2004-10-13 00:00:00