R Project Buffer Overflow Vulnerability in Preferences Language Menu on Windows x64

A buffer overflow vulnerability has been identified in R version 3.4.4 for Windows x64. This issue arises in the GUI Preferences language menu field, where local attackers can inject a crafted payload. Exploiting this vulnerability allows attackers to bypass Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) protections, leading to the execution of arbitrary shellcode with application privileges.

Impact

Exploitation of this vulnerability allows for a buffer overflow that can be leveraged to execute arbitrary code with the privileges of the application.

Reproduction

To reproduce this vulnerability, open R 3.4.4 on a Windows x64 system. Navigate to the GUI Preferences and locate the 'Language for menus' field. Paste the crafted payload into this field and click 'OK'. The injected payload will trigger the buffer overflow by exploiting the structured exception handler (SEH) chain, bypassing DEP and ASLR protections.