Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2007-0368

Description

Stack-based buffer overflow in mbse-bbs 0.70 and earlier allows local users to execute arbitrary code via a long string in the MBSE_ROOT environment variable.

POC

Reference

- http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/051859.html

- https://www.exploit-db.com/exploits/3154

Github

- https://github.com/mudongliang/LinuxFlaw

- https://github.com/oneoy/cve-