CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-29 16:29:28 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
860e02050fe0cfa14d092faefbaafd5bd449bbcb
CVEs-PoC/2011/CVE-2011-4623.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

21 lines
918 B
Markdown
Raw Blame History

### [CVE-2011-4623](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4623)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)
### Description
Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service (daemon hang) via a large file, which triggers a heap-based buffer overflow.
### POC
#### Reference
- http://rsyslog.com/changelog-for-4-6-6-v4-stable/
- http://rsyslog.com/changelog-for-5-7-4-v5-beta/
- http://rsyslog.com/changelog-for-6-1-4-devel/
#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ehoffmann-cp/check_for_cve
Reference in New Issue View Git Blame Copy Permalink