Changes

Jump to navigation Jump to search
781 bytes added ,  00:40, 10 May 2016
Line 62: Line 62:  
| April 25, 2016
 
| April 25, 2016
 
| [[User:Shinyquagsire23|Shiny Quagsire]]
 
| [[User:Shinyquagsire23|Shiny Quagsire]]
 +
|-
 +
| Citizens of Earth
 +
| Save file read stack smash
 +
| Citizens of Earth also uses "XML" files for saves, which are actually entirely binary data (not XML at all) with no checksums. These files are read from the filesystem on to a fixed size stack buffer which leads to an incredibly trivial stack smash. When using the autosave slot for this, the save is parsed when the user selects "continue". When using one of the dedicated save slots (1-3), the save is parsed shortly after the company splash screens fade. Note that the save is read quite high (descending) on the stack - when exploiting this, one would likely need to move SP due to almost instantly overflowing the physical stack.
 +
| None
 +
| [[10.7.0-32]].
 +
| Time of exploit release.
 +
| May 5, 2016
 +
| [[User:Dazzozo|Dazzozo]]
 
|}
 
|}
  
254

edits

Navigation menu