Inbit Messenger Stack-Based Buffer Overflow Vulnerability Allowing Remote Code Execution
Vulnerability
A remote stack-based buffer overflow vulnerability has been identified in Inbit Messenger versions 4.6.0 through 4.9.0. This vulnerability allows unauthenticated attackers to execute arbitrary code by sending malformed network packets. The issue arises in the messenger's network handler, where specially crafted payloads can overwrite the Structured Exception Handler (SEH), leading to the execution of shellcode on vulnerable Windows systems.
Impact
Exploitation of this vulnerability allows for unauthorized remote code execution on the affected system.
Reproduction
The vulnerability can be reproduced by sending a crafted packet that includes a buffer overflow payload. This can be done using a Python script that connects to the application's server on the vulnerable port (10883) and sends the malformed data. The payload should be designed to overflow the stack buffer while also targeting the application's exception handling mechanism.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.