CVE-2021-45423 — CRITICAL (9.8)

Vulnerability Description

A Buffer Overflow vulnerabilityexists in Pev 0.81 via the pe_exports function from exports.c.. The array offsets_to_Names is dynamically allocated on the stack using exp->NumberOfFunctions as its size. However, the loop uses exp->NumberOfNames to iterate over it and set its components value. Therefore, the loop code assumes that exp->NumberOfFunctions is greater than ordinal at each iteration. This can lead to arbitrary code execution.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Pev Project	Pev	0.81

Related Weaknesses (CWE)

CWE-120

References

https://github.com/merces/libpe/issues/35ExploitVendor Advisory
https://github.com/merces/libpe/issues/35ExploitVendor Advisory

FAQ

What is CVE-2021-45423?

CVE-2021-45423 is a vulnerability with a CVSS score of 9.8 (CRITICAL). A Buffer Overflow vulnerabilityexists in Pev 0.81 via the pe_exports function from exports.c.. The array offsets_to_Names is dynamically allocated on the stack using exp->NumberOfFunctions as its size...

How severe is CVE-2021-45423?

CVE-2021-45423 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2021-45423?

Check the references section above for vendor advisories and patch information. Affected products include: Pev Project Pev.