Sony PC Companion Multiple Stack-based Buffer Overflow Vulnerabilities

The vulnerabilities are caused due to a boundary error in several .dll libraries when handling the value assigned to different functions and can be exploited to cause a stack-based buffer overflow via an overly long string which may lead to execution of arbitrary code on the affected machine.

sehchain-sonypc-immdbg

sonypc_immdbg

sonypccuploadmgr

sonyresearch

Advisories:

Sony PC Companion 2.1 (Admin_RemoveDirectory()) Stack-based Unicode Buffer Overload
Sony PC Companion 2.1 (CheckCompatibility()) Stack-based Unicode Buffer Overload
Sony PC Companion 2.1 (Load()) Stack-based Unicode Buffer Overload SEH
Sony PC Companion 2.1 (DownloadURLToFile()) Stack-based Unicode Buffer Overload SEH

t00t

Comment are closed.