10-Strike Network Inventory Explorer Buffer Overflow Vulnerability Allowing Remote Code Execution

A buffer overflow vulnerability has been identified in 10-Strike Network Inventory Explorer version 8.54. This vulnerability occurs in the structured exception handling (SEH) mechanism, allowing attackers to execute arbitrary code by overwriting SEH records. Exploitation involves crafting a malicious payload that targets the 'Computer' parameter in the 'Add' function.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system.

Reproduction

To reproduce this vulnerability, first create a payload using a tool like msfvenom, specifying the desired command execution payload. Then, run a Python script that generates a buffer overflow payload, overwriting the SEH chain with a return address pointing to a 'pop' gadget in a vulnerable module. After copying this payload to the clipboard, paste it into the 'Computer' parameter under 'Computer Card' when adding a new entry. Once the payload is submitted, the injected code will be executed.