Faleemi Desktop Software Buffer Overflow Vulnerability Allowing Code Execution
Vulnerability
A local buffer overflow vulnerability has been identified in Faleemi Desktop Software version 1.8.2. The issue resides in the Device alias field within the Managing Log interface, where local attackers can overwrite the structured exception handler (SEH). By crafting a malicious payload and pasting it into the Device alias field, attackers can execute arbitrary code. This vulnerability has been demonstrated with a proof-of-concept that opens the calculator application.
Impact
Exploitation of this vulnerability allows for a local buffer overflow, with an overwrite of the structured exception handler, leading to arbitrary code execution.
Reproduction
The vulnerability can be reproduced by running the Faleemi Desktop Software version 1.8.2 on a Windows 7 32-bit system. After launching the application, navigate to the Managing Log interface. In the Device alias field, paste a crafted payload that exploits the buffer overflow vulnerability. Once the payload is inserted, click on 'Search', which will trigger the exploitation and result in the calculator application opening as a proof-of-concept demonstration.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.