KingScada AlarmServer 3.1.2.13 Buffer Overflow

Posted by deepcore on September 15, 2017 – 8:54 am

This Metasploit module exploits a stack based buffer overflow found in KingScada versions prior to 3.1.2.13. The vulnerability is triggered when sending a specially crafted packet to the ‘AlarmServer’ (AEserver.exe) service listening on port 12401. During the parsing of the packet the 3rd dword is used as a size value for a memcpy operation which leads to an overflown stack buffer.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Carlo Gavazzi Powersoft 2.1.1.1 Directory Traversal haneWIN DNS Server 1.5.3 Buffer Overflow »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

KingScada AlarmServer 3.1.2.13 Buffer Overflow

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL