Buffer Overflow vulnerability in CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx allows a remote attacker to execute arbitrary code via the lab3 of csapp,lab3/buflab-update.pl component.
CNVD has completed verification of this vulnerability, but it has not been publicly disclosed because the vulnerability has not been fixed.
Buffer Overflow
CSAPP_Lab (Lab of CS:APP3e)
CSAPP Lab3 - 15-213, Fall 20xx (There's only one version.)
lab3 of csapp,lab3/buflab-update.pl
If the server deploys lab3 of csapp_lab, an attacker can access a specific URL to execute arbitrary code.
Yuchao He, Yijie Xun, Jiajia Liu, Yuwei Yang, Bomin Mao, Hongzhi Guo (all discoverers from Northwestern Polytechnical University)
For the POC, refer to another file in the same folder.