CVE-2019-25631

AIDA64 Business 5.99.4900 SEH Buffer Overflow via EggHunter

CVSS 8.6 HIGHEPSS 0.3%CWE-787

AIDA64 Business 5.99.4900 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH pointers with malicious shellcode. Attackers can inject egg hunter shellcode through the SMTP display name field in preferences or report wizard functionality to trigger the overflow and execute code with application privileges.

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Produtos afetados

Aida64 · AIDA64 Business

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.aida64.com https://www.aida64.com/downloads https://www.exploit-db.com/exploits/46639 https://www.vulncheck.com/advisories/aida64-business-seh-buffer-overflow-via-egghunter