The Biosig Project Libbiosig Stack-Based Buffer Overflow Vulnerability in MFER Parsing

A stack-based buffer overflow vulnerability has been identified in The Biosig Project libbiosig version 3.9.1, specifically within the MFER parsing functionality. This vulnerability allows for arbitrary code execution by exploiting how the library processes specially crafted MFER files. The issue arises when the library reads data from the MFER file into fixed-size buffers without proper length validation, enabling attackers to overwrite adjacent memory on the stack.

Impact

Exploitation of this vulnerability leads to a stack-based buffer overflow, allowing for arbitrary code execution.

Reproduction

The vulnerability can be reproduced by creating a malicious MFER file that exploits the buffer overflow conditions. This file should be crafted to include a length value that exceeds the expected size for certain tags, such as Tag 3, Tag 64, Tag 65, Tag 67, Tag 131, or Tag 133. When this file is processed by libbiosig, the library will read the excessive length into a stack-allocated buffer, causing the overflow.

Remediation

Users are advised to update to the patched version of libbiosig, which is available on the project's official website.