ELOG Web Logbook Multiple Remote Buffer Overflow Vulnerabilities

info
discussion
exploit
solution
references

ELOG Web Logbook Multiple Remote Buffer Overflow Vulnerabilities

ELOG Web Logbook is prone to two remote buffer overflow vulnerabilities. The application fails to perform sufficient boundary checks on user-supplied data.

These issues allow remote attackers to execute arbitrary machine code in the context of the vulnerable server process.

This issue affects version 2.6.0. Prior versions may also be affected.