Given that fixing affected applications may require recompiling them with the fixed library by the vendor, Core Security Technologies has decided not to release proof of concept code publicly at this time in order to provide affected companies with additional time for patching. This allows the crafted BMP to potentially execute arbitrary code. This library is vulnerable to a buffer overflow attack when a specially crafted BMP file with specific values in the BITMAPINFOHEADER.biClrUsed field are used. The library VCL.Graphics, may be used by applications developed using Embarcadero's Delphi and C++ Builder to process BMP files. Technical Description / Proof of Concept Code The publication of this advisory was coordinated by Joaquín Rodríguez Varela from the Core Advisories Team in close coordination with the US-CERT.ħ. This vulnerability was discovered and researched by Marcos Accossatto from the Core Exploits Writers Team. Vendor Information, Solutions and WorkaroundsĪn article from Embarcadero explains the issue and includes a link to the fix Ĭore Security Technologies recommends those affected use third party software such as Sentinel or EMET that could help to prevent the exploitation of affected systems to some extent. Other 32b and 64b versions could be also affected. Delphi XE2 / C++Builder XE2 (Delphi:Win32) (C++Builder:Win32).Delphi XE3 / C++Builder XE3 (Delphi:Win32) (C++Builder:Win32).Delphi XE4 / C++Builder XE4 (Delphi:Win32) (C++Builder:Win32).Delphi XE5 / C++Builder XE5 (Delphi:Win32) (C++Builder:Win32). We also found vulnerable applications that were built with the following development tools: Embarcadero® Delphi® XE6 Version 6.9843.Embarcadero® C++Builder® XE6 Version 6.9843.The aforementioned vulnerability has been found in the VCL (Visual Component Library) allowing an attacker to use a specially crafted BMP file that produces a buffer overflow and potentially allows him to execute arbitrary code by performing a "client side" attack. Vulnerability InformationĪpplications developed with Delphi and C++ Builder that use the specific integrated graphic library detailed below are prone to a security vulnerability when processing malformed BMP files. Title: Delphi and C++ Builder VCL library Buffer Overflow
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |