HC's Capture the Flag website
CTF Contests
25C3-CTF
25C3-CTF final results
Advisory #48
From team WiiPhonies
New advisory by : Ge0rG
Affected service(s): vdspi
Severity [lmh] : low
===== Problem =====
Certain IDs can crash the service, causing a DoS.
This is a Follow-Up for #37, providing a fix.
===== Impact =====
unpatched:
The current session is terminated abruptly, when an ID=0 is submitted. Lock
files remain in the file system, preventing further usability of the VDspi
service.
patch from #37:
returned incorrect results.
===== Fix =====
This should fix the bug and also another issue with ID searching.
function Search_By_ID (db : in Person_DB;
id : ID_Type;
process : not null access procedure
(p : in Person_Type))
return Natural is
function pred (p : Person_Type) return Boolean is
begin
return (Person.ID (p) = id);
end pred;
begin
return Search_By_Pred (db, pred'Access, process);
end Search_By_ID;
Rating
[1] yep.