Inbit Messenger Remote Command Execution Vulnerability

A remote command execution vulnerability exists in Inbit Messenger versions 4.6.0 through 4.9.0. This issue allows unauthenticated attackers to execute arbitrary commands with system privileges by exploiting a stack-based buffer overflow in the application's messaging protocol. The vulnerability is triggered by sending specially crafted XML packets to port 10883, containing a malicious payload that overflows the stack buffer and hijacks the application's execution flow.

Impact

Exploitation of this vulnerability leads to unauthorized execution of commands on the affected system with the privileges of the user running the Inbit Messenger application.

Reproduction

To reproduce this vulnerability, first install Inbit Messenger version 4.6.0 to 4.9.0 on a Windows machine. Once the application is running, send a crafted XML packet to port 10883. The packet should include a payload that exploits the stack buffer overflow by overwriting the return address with a pointer to a controlled location. This can be done using a script that automates the process of sending the malicious packet and handling the resulting execution control.