The Biosig Project Libbiosig Stack-Based Buffer Overflow Vulnerability in MFER Parsing
Vulnerability
A stack-based buffer overflow vulnerability has been identified in The Biosig Project libbiosig version 3.9.1, specifically within the MFER (Medical waveform Format Encoding Rules) parsing functionality. This vulnerability allows for arbitrary code execution by exploiting how the library processes certain MFER file tags. When a maliciously crafted MFER file is parsed, the vulnerability can be triggered, leading to potential exploitation.
Impact
Exploitation of this vulnerability allows for arbitrary code execution on the affected system.
Reproduction
The vulnerability can be reproduced by crafting an MFER file that includes specific tag values that trigger the buffer overflow. The crafted file must be provided to the libbiosig library through the 'sopen_extended' function, which is the entry point for file parsing. During the parsing process, the library fails to properly validate the length of data being read into stack-allocated buffers, allowing for a buffer overflow to occur.
Remediation
Users are advised to update to the patched version of libbiosig, which is available on the project's official website.