Valentina Studio Buffer Overflow Vulnerability in Connection Dialog
Vulnerability
A buffer overflow vulnerability has been identified in Valentina Studio version 9.0.5 for Linux. The issue resides in the Host field of the connection dialog, where local attackers can crash the application by inputting a string longer than 264 bytes. This vulnerability leads to a denial-of-service condition by causing the application to crash when the oversized input is pasted into the Host field during server connection attempts.
Impact
Exploitation of this vulnerability causes the application to crash, leading to a denial-of-service condition.
Reproduction
To reproduce this vulnerability, first run a Python script that generates a buffer of 264 bytes and saves it to a text file. Copy the contents of this file to the clipboard. Then, open Valentina Studio and navigate to the 'Connect to...' option under the File menu. Select either Valentina Server or SQLite Server, and paste the clipboard contents into the 'Host' field. Finally, click the 'Connect' button, which will result in the application crashing.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.