CVE-2004-1095

zgv 5.8 - Remote Code Execution via Integer Overflow in Image Header Parsing

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1095. PoCs published by infamous41md.

AI-analyzed exploit summary This exploit targets a vulnerability in ximage or zgv, likely involving a buffer overflow or similar memory corruption issue to achieve remote code execution. The exploit is provided as a compressed archive, suggesting it includes compiled binaries or scripts for demonstration.

Description

Multiple integer overflows in (1) readbmp.c, (2) readgif.c, (3) readgif.c, (4) readmrf.c, (5) readpcx.c, (6) readpng.c,(7) readpnm.c, (8) readprf.c, (9) readtiff.c, (10) readxbm.c, (11) readxpm.c in zgv 5.8 allow remote attackers to execute arbitrary code via certain image headers that cause calculations to be overflowed and small buffers to be allocated, leading to buffer overflows. NOTE: CVE-2004-0994 and CVE-2004-1095 identify sets of bugs that only partially overlap, despite having the same developer. Therefore, they should be regarded as distinct.

Exploits (1)

exploitdb WORKING POC VERIFIED

by infamous41md · textremotelinux

https://www.exploit-db.com/exploits/609

View Code ZIP pw:eip

This exploit targets a vulnerability in ximage or zgv, likely involving a buffer overflow or similar memory corruption issue to achieve remote code execution. The exploit is provided as a compressed archive, suggesting it includes compiled binaries or scripts for demonstration.

Classification

Working Poc 80%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ximage or zgv (version unspecified)

No auth needed

Prerequisites: Access to the target system running vulnerable ximage or zgv

MITRE ATT&CK