AIDA64 Extreme Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

A structured exception handling buffer overflow vulnerability has been identified in AIDA64 Extreme version 5.99.4900. This vulnerability allows local attackers to execute arbitrary code by injecting malicious input through the email preferences and report wizard interfaces. The crafted payloads can be inserted into the Display name field and the Load from file parameter, triggering the buffer overflow and executing shellcode with the application's privileges.

Impact

Exploitation of this vulnerability leads to a buffer overflow, allowing for arbitrary code execution with the privileges of the AIDA64 application.

Reproduction

To reproduce this vulnerability, first, create a payload using a buffer overflow exploit technique, such as an EggHunter, and save it to a file. Then, open AIDA64 Extreme version 5.99.4900 and navigate to the preferences menu. Under the email settings, paste the crafted payload into the 'Display name' field. After saving the preferences, go to the 'Report Wizard' and load the previously saved payload file into the 'Load from file' parameter. Proceed through the wizard, which will trigger the buffer overflow and execute the injected shellcode, such as opening the calculator application.