Here’s a working exploit for an already disclosed bug – including SafeSEH Bypass – and for the actual version, which is still vulnerable. Sadly.

An important side – note! The bug has not been properly researched:

The Bugtraq – Posting states:

But all other .ini values are vulnerable too. A closer look at the disassembly clearly shows that they are. The vulnerable function is called on every single value of the .ini file:

FormatFactory v3.0.1 Profile File Handling Buffer Overflow Exploit
Tagged on:         

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.