Admin Express Buffer Overflow Vulnerability in 'Folder Path' Field Allows Arbitrary Code Execution
Vulnerability
A local buffer overflow vulnerability has been identified in Admin Express version 1.2.5.485. This vulnerability arises from improper exception handling, allowing local attackers to execute arbitrary code. The issue can be exploited by entering an alphanumeric encoded payload into the left-hand side Folder Path field within the System Compare feature. Once the payload is pasted, clicking the scale icon executes the injected shellcode with the application's privileges.
Impact
Exploitation of this vulnerability leads to a structured exception handling buffer overflow, allowing for arbitrary code execution with application privileges.
Reproduction
To reproduce this vulnerability, open Admin Express 1.2.5.485 on a Windows XP SP3 EN system. Navigate to the System Compare feature and paste a crafted buffer overflow payload into the left-hand side Folder Path field. After inserting the payload, click the scale icon to execute the shellcode, which will run with application privileges.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.