Rubo DICOM Viewer Buffer Overflow Vulnerability Allowing Remote Code Execution
Vulnerability
A buffer overflow vulnerability has been identified in Rubo DICOM Viewer version 2.0. The issue arises in the DICOM server name input field, where improper handling of input allows attackers to overwrite the Structured Exception Handler (SEH). By crafting a malicious text file with a specific payload, attackers can exploit this vulnerability to execute arbitrary code by manipulating the SEH and triggering remote code execution.
Impact
Exploitation of this vulnerability leads to a stack-based buffer overflow, allowing for arbitrary code execution on the affected system.
Reproduction
To reproduce this vulnerability, generate a payload that exploits the buffer overflow by overwriting the SEH. This can be done using a Python script that creates a malicious text file with the crafted payload. The file should be loaded into the DICOM server name input field, which will trigger the buffer overflow and execute the injected code, such as launching the Windows calculator.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.