PassFab Excel Password Recovery Buffer Overflow Vulnerability Allowing Arbitrary Code Execution
Vulnerability
A buffer overflow vulnerability in PassFab Excel Password Recovery version 8.3.1 has been identified. This vulnerability arises from improper structured exception handling, allowing local attackers to execute arbitrary code. Exploitation involves crafting a buffer overflow payload that includes a pop-pop-ret gadget and shellcode. This payload can be inserted into the 'Licensed E-mail and Registration Code' field during the registration process, triggering the code execution.
Impact
Exploitation of this vulnerability allows for arbitrary code execution on the affected system.
Reproduction
To reproduce this vulnerability, first create a buffer overflow payload using a Python script. This script should generate a payload that includes the buffer overflow exploit, such as a 'pop-pop-ret' gadget and shellcode. Save this payload into a text file. Then, open PassFab Excel Password Recovery and navigate to the registration window. Paste the contents of the text file into the 'Licensed E-mail and Registration Code' field and click 'Register'. This will execute the payload, opening the Windows calculator as a proof of concept.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.