CVE-2008-3533

yelp < 2.24 - Remote Code Execution via Format String in URI Handler

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3533. PoCs published by Aaron Grattafiori.

AI-analyzed exploit summary This exploit demonstrates a format-string vulnerability in Yelp 2.23.1 by providing malformed input strings that can leak memory contents or crash the application. The PoC includes format specifiers like %08x and %x to trigger the vulnerability.

Description

Format string vulnerability in the window_error function in yelp-window.c in yelp in Gnome after 2.19.90 and before 2.24 allows remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command line, as demonstrated by use of yelp within (1) man or (2) ghelp URI handlers in Firefox, Evolution, and unspecified other programs.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Aaron Grattafiori · textdoslinux

https://www.exploit-db.com/exploits/32248

View Code ZIP pw:eip

This exploit demonstrates a format-string vulnerability in Yelp 2.23.1 by providing malformed input strings that can leak memory contents or crash the application. The PoC includes format specifiers like %08x and %x to trigger the vulnerability.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: Yelp 2.23.1

No auth needed

Prerequisites: A vulnerable version of Yelp (2.23.1 or potentially others)

MITRE ATT&CK