heshi906/CVE-2024-28515

## CVE-2024-28515
CVE-2024-28515
[Description]
Buffer Overflow vulnerability in CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx allows a remote attacker to execute arbitrary code via the lab3 of csapp,lab3/buflab-update.pl component.

[Vulnerability Type]
Buffer Overflow

[Vendor of Product]
CSAPP_Lab (Lab of CS:APP3e)

[Affected Product Code Base]
CSAPP Lab3 - 15-213, Fall 20xx (There's only one version.)

[Affected Component]
lab3 of csapp,lab3/buflab-update.pl

[Attack Vectors]
If the server deploys lab3 of csapp_lab, an attacker can access a specific URL to execute arbitrary code.

[Discoverer]
Yuchao He, Yijie Xun, Jiajia Liu, Yuwei Yang, Bomin Mao, Hongzhi Guo (all discoverers from Northwestern Polytechnical University)

[Reference]
- [CSAPP Official Website](http://csapp.com)
- [CSAPP Lab Lab Website](http://csapplablab.com)
	CVE-2024-28515
	[Description]
	Buffer Overflow vulnerability in CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx allows a remote attacker to execute arbitrary code via the lab3 of csapp,lab3/buflab-update.pl component.

	[Vulnerability Type]
	Buffer Overflow

	[Vendor of Product]
	CSAPP_Lab (Lab of CS:APP3e)

	[Affected Product Code Base]
	CSAPP Lab3 - 15-213, Fall 20xx (There's only one version.)

	[Affected Component]
	lab3 of csapp,lab3/buflab-update.pl

	[Attack Vectors]
	If the server deploys lab3 of csapp_lab, an attacker can access a specific URL to execute arbitrary code.

	[Discoverer]
	Yuchao He, Yijie Xun, Jiajia Liu, Yuwei Yang, Bomin Mao, Hongzhi Guo (all discoverers from Northwestern Polytechnical University)

	[Reference]
	- [CSAPP Official Website](http://csapp.com)
	- [CSAPP Lab Lab Website](http://csapplablab.com)