In AFL++ 4.05c, the CmpLog component uses the current working directory to resolve and execute unprefixed fuzzing targets, allowing code execution.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Afl++ |
Afl++_project |
4.05c (including) |
4.05c (including) |
References