6 matches found
CVE-2022-28381
Mediaserver.exe in ALLMediaServer 1.6 has a stack-based buffer overflow that allows remote attackers to execute arbitrary code via a long string to TCP port 888, a related issue to CVE-2017-17932...
ALLMediaServer 1.6 SEH Buffer Overflow
This module exploits a stack buffer overflow leading to a SEH handler overwrite in ALLMediaServer 1.6. The vulnerability is caused due to a boundary error within the handling of a HTTP request. Note that this exploit will only work against x86 or WoW64 targets, x64 is not supported at this time...
CVE-2022-28381
creationtimestamp| type| source ---|---|--- 2022-04-03 22:26:52+00:00| seen| https://t.me/cibsecurity/40069 2022-04-04 19:32:45+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/cve202228381allmediaserverbof.rb 2022-04-06 14:21:06+00:00| seen|...
CVE-2022-28381
Mediaserver.exe in ALLMediaServer 1.6 has a stack-based buffer overflow that allows remote attackers to execute arbitrary code via a long string to TCP port 888, a related issue to CVE-2017-17932...
CVE-2022-28381
Mediaserver.exe in ALLMediaServer 1.6 has a stack-based buffer overflow that allows remote attackers to execute arbitrary code via a long string to TCP port 888, a related issue to CVE-2017-17932...
CVE-2022-28381
CVE-2022-28381 describes a stack-based (SEH) buffer overflow in ALLMediaServer 1.6, triggered by a long string to TCP port 888, enabling remote code execution. Public sources (Metasploit module for ALLMediaServer 1.6) confirm exploitation against x86/WoW64 targets; no x64 support. The issue is ti...