CVE-2008-3148 – OllyDBG 1.10 and ImpREC 1.7f - Export Name Buffer Overflow

https://notcve.org/view.php?id=CVE-2008-3148

Stack-based buffer overflow in (1) OllyDBG 1.10 and (2) ImpREC 1.7f allows user-assisted attackers to execute arbitrary code via a crafted DLL file that contains a long string. Desbordamiento de búfer basado en pila en (1) OllyDBG 1.10 y (2) ImpREC 1.7f permite a atacantes asistidos por usuario ejecutar código de su elección a través de un fichero DLL manipulado que contiene una cadena larga. • https://www.exploit-db.com/exploits/6031 http://www.securityfocus.com/bid/30139 https://exchange.xforce.ibmcloud.com/vulnerabilities/43673 https://exchange.xforce.ibmcloud.com/vulnerabilities/43675 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •