VariCAD 2010-2.05 EN Stack-Based Buffer Overflow Vulnerability in DWB File Parsing

A stack-based buffer overflow vulnerability has been identified in VariCAD EN versions through 2010-2.05. This issue arises when the application parses .dwb drawing files, as it fails to properly validate the length of the input data embedded in these files. The vulnerability allows a crafted .dwb file to overwrite critical memory structures, potentially leading to arbitrary code execution. This flaw can be exploited locally by convincing a user to open a malicious .dwb file.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system.

Reproduction

To reproduce this vulnerability, open VariCAD 2010-2.05 EN and navigate to 'File' -> 'Open'. Select a maliciously crafted .dwb file that exploits the buffer overflow vulnerability. The exploitation can be verified by executing a payload, such as a bind shell, through the Metasploit Framework.