This writeup details a crash vulnerability in Immunity Debugger v1.85 due to improper path/file extension parsing in the 'OpenEXEfile' function, leading to a NULL pointer dereference in ntdll.strlen(). The issue arises when debugging files with specific extensions (e.g., .exe.exe).
Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:Immunity Debugger v1.85
No auth needed
Prerequisites:A file with a specific extension (e.g., .exe.exe) to trigger the crash