CVE-2008-0100

white_dune < 0.29beta791 - Remote Code Execution via Long String in .WRL File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0100. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The provided text describes a format-string and buffer-overflow vulnerability in White_Dune versions prior to 0.29beta795. It references ExploitDB and a GitLab link for the exploit but does not contain actual exploit code.

Description

Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via a long string in a .WRL file.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Luigi Auriemma · textlocalmultiple

https://www.exploit-db.com/exploits/30970

View Code ZIP pw:eip

The provided text describes a format-string and buffer-overflow vulnerability in White_Dune versions prior to 0.29beta795. It references ExploitDB and a GitLab link for the exploit but does not contain actual exploit code.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: White_Dune < 0.29beta795

No auth needed

Prerequisites: Local access to the target system · Vulnerable version of White_Dune installed

MITRE ATT&CK