|Subject:||cpio RCE Exploit Caused by Integer Overflow|
|Date:||Fri, 6 Aug 2021 20:15:00 +0000|
Qiaoyi Fang (cc'ed) and I are both CS students at Duke, and we've discovered an RCE exploit in cpio, caused by an integer overflow in ds_fgetstr. We've created the exploit on cpio 2.13, on the version the current kali-rolling. We've attached a bug report containing all the details, as well as the files necessary to reproduce the exploit. Additionally, we've recorded the exploit here: https://youtu.be/F0yKJhu7Vak.
Please let us know if you have any questions. Thank you!
Sincerely,Maverick Chung and Qiaoyi Fang
|[Prev in Thread]||Current Thread||[Next in Thread]|