CVE-2017-9430

This exploit demonstrates a stack-based buffer overflow in DNSTracer 1.8.1 via a long command-line argument, leading to a denial of service (DoS). The PoC uses a Python one-liner to generate a 1025-character string, triggering the overflow in a strcpy call for argv[0].

This exploit demonstrates a stack-based buffer overflow in DNSTracer 1.9, leveraging a crafted input to overwrite the EIP and execute shellcode for arbitrary command execution. The PoC includes NOP sleds, shellcode, and a hardcoded return address to trigger the vulnerability.

This repository contains a proof-of-concept for CVE-2017-9430, a stack-based buffer overflow in dnstracer through 1.9. The vulnerability is triggered by a long command-line argument that is mishandled in a strcpy call for argv[0]. The fix involves checking the length of argv[0] before copying it.

This repository contains a proof-of-concept for CVE-2017-9430, a stack-based buffer overflow in dnstracer through 1.9. The exploit leverages a long command-line argument to trigger a crash or potential arbitrary code execution via a mishandled strcpy call for argv[0].