vendor:
Xenorate
by:
germaya_x
7.5
CVSS
HIGH
Buffer Overflow
CWE
Product Name: Xenorate
Affected Version From: 2.5.0.0
Affected Version To: 2.5.0.0
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows
2009
Xenorate 2.50(.xpl) universal Local Buffer Overflow Exploit (SEH)
This exploit takes advantage of a buffer overflow vulnerability in Xenorate 2.50(.xpl) to execute arbitrary code. It utilizes a short jump instruction to bypass the next structured exception handler (SEH) and overwrite the SEH with a return address in the bass.dll library. The exploit then injects shellcode to execute the Windows calculator application. This exploit has been tested on Windows XP SP2.
Mitigation:
Apply the latest patches and updates for Xenorate to fix the buffer overflow vulnerability. Additionally, use caution when opening untrusted .xpl files.