NASM 0.98.x - Error Preprocessor Directive Buffer Overflow

Author: Jonathan Rockway
type: remote
platform: linux
port: 
date_added: 2004-12-15  
date_updated: 2013-04-30  
verified: 1  
codes: CVE-2004-1287;OSVDB-12446  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 25005.txt  

source: https://www.securityfocus.com/bid/11991/info

NASM is prone to a buffer overflow. This condition is exposed when the application attempts to assemble a source file that contains malformed '%error' preprocessor directive arguments. Since the source file may originate from an external or untrusted source, this vulnerability is considered remote in nature.

Successful exploitation will permit arbitrary code execution with the privileges of the user running the application.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/25005.zip