[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

cpio RCE Exploit Caused by Integer Overflow

From: Maverick Chung
Subject: cpio RCE Exploit Caused by Integer Overflow
Date: Fri, 6 Aug 2021 20:15:00 +0000


Qiaoyi Fang (cc'ed) and I are both CS students at Duke, and we've discovered an RCE exploit in cpio, caused by an integer overflow in ds_fgetstr. We've created the exploit on cpio 2.13, on the version the current kali-rolling. We've attached a bug report containing all the details, as well as the files necessary to reproduce the exploit. Additionally, we've recorded the exploit here: https://youtu.be/F0yKJhu7Vak.

Please let us know if you have any questions. Thank you!

Maverick Chung and Qiaoyi Fang

Attachment: cpiopwn-files.zip
Description: cpiopwn-files.zip

Attachment: cpio-bug-report.pdf
Description: cpio-bug-report.pdf

reply via email to

[Prev in Thread] Current Thread [Next in Thread]