[New-bugs-announce] [issue27502] Python -m Module Vulnerable to Buffer Over Flow.
Dhiraj
report at bugs.python.org
Tue Jul 12 15:09:33 EDT 2016
New submission from Dhiraj:
Hello Sir ,
The Module of Python " -m SimpleHTTPServer " is vulnerable to Buffer Over Flow.
Step :
I have prepared a python script which is sending more than 5000+ Values to the Module in GET Method , and as soon as , I run that Script , the Python -m SimpleHTTPServer which is running on the Victim's system Generator’s a huge Line or Error where as Exception handling is not done Proper , as if the Server do not get crash , but if the fuzzing script is run again and again it gets Crashed , and Buffer Over Flow is been Taken place.
In our Scenario Kali Linux machine is victims system running the server module and Linux Mint is sending the fuzzing script.
Please have a look on the POC below.
I ll be happy to hear from the team.
Thank You
----------
files: POC-Python.zip
messages: 270264
nosy: DhirajMishra
priority: normal
severity: normal
status: open
title: Python -m Module Vulnerable to Buffer Over Flow.
type: security
versions: Python 2.7, Python 3.2, Python 3.3, Python 3.4, Python 3.5, Python 3.6
Added file: http://bugs.python.org/file43699/POC-Python.zip
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue27502>
_______________________________________
More information about the New-bugs-announce
mailing list