oatpp Oat++ Stack-Based Buffer Overflow Vulnerability in JSON Deserializer
Vulnerability
A critical stack-based buffer overflow vulnerability has been identified in oatpp Oat++ versions through 1.3.1. The issue arises in the 'deserializeArray' function within 'src/oatpp/json/Deserializer.cpp', where improper handling of input can lead to a stack overflow. This vulnerability can be exploited remotely, causing a denial-of-service condition by crashing the application.
Impact
Exploitation of this vulnerability leads to a stack-based buffer overflow, causing a denial-of-service condition by crashing the application.
Reproduction
The vulnerability can be reproduced by compiling the application with AddressSanitizer enabled, which helps detect memory-related errors. After compiling the application, a proof-of-concept exploit can be executed using the 'fuzz_mapper' fuzzer, targeting the 'deserializeArray' function in the JSON deserializer. The fuzzer can be used to send specially crafted input that triggers the buffer overflow.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.