CVE-2004-1260

abctab2ps 1.6.3 - Buffer Overflow in write_heading or trim_title Function

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2004-1260. PoCs published by Limin Wang.

AI-analyzed exploit summary The writeup describes a buffer overflow vulnerability in abctab2ps version 1.6.3, specifically in the 'write_heading()' function. An attacker can exploit this by crafting a malicious ABC file with excessive string data to execute arbitrary code in the context of the application.

Description

Multiple buffer overflows in the (1) write_heading function in subs.cpp or (2) trim_title function in parse.cpp for abctab2ps 1.6.3 allow remote attackers to execute arbitrary code via crafted ABC files.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Limin Wang · textremotewindows
https://www.exploit-db.com/exploits/25027

The writeup describes a buffer overflow vulnerability in abctab2ps version 1.6.3, specifically in the 'write_heading()' function. An attacker can exploit this by crafting a malicious ABC file with excessive string data to execute arbitrary code in the context of the application.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: abctab2ps 1.6.3
No auth needed
Prerequisites: A vulnerable version of abctab2ps · Ability to deliver a malicious ABC file to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Limin Wang · textremotewindows
https://www.exploit-db.com/exploits/25029

The writeup describes a buffer overflow vulnerability in abctab2ps version 1.6.3, specifically in the 'trim_title()' function, which can be exploited via a malicious ABC file to achieve remote code execution in the context of the application.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: abctab2ps 1.6.3
No auth needed
Prerequisites: A vulnerable version of abctab2ps · Ability to deliver a malicious ABC file to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Vendor Advisory x_refsource_misc
http://tigger.uic.edu/~jlongs2/holes/abctab2ps.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18583
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18584

Scores

EPSS 0.1119
EPSS Percentile 95.4%

Details

Status published
Products (1)
abctab2ps/abctab2ps 1.6.3
Published Jan 10, 2005
Tracked Since Feb 18, 2026