CVE-2018-25220

Bochs 2.6-5 Buffer Overflow Remote Code Execution

CVSS 9.3 CRITICALEPSS 0.6%CWE-787

Bochs 2.6-5 contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying an oversized input string to the application. Attackers can craft a malicious payload with 1200 bytes of padding followed by a return-oriented programming chain to overwrite the instruction pointer and execute shell commands with application privileges.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected products

bochs · BOCHS

public PoCs found — 1

cve_referencewww.exploit-db.com/exploits/43979unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://bochs.sourceforge.net/https://www.exploit-db.com/exploits/43979 https://www.vulncheck.com/advisories/bochs-5-buffer-overflow-remote-code-execution