SIEMENS Solid Edge ST4/ST5 SEListCtrlX ActiveX - SetItemReadOnly Arbitrary Memory Rewrite RCE

SIEMENS Solid Edge ST4 SEListCtrlX ActiveX Control SetItemReadOnly Arbitrary Memory Rewrite Remote Code Execution Vulnerability SEListCtrlX ActiveX 安装与西门子 Solid Edge 产品此模块功绩。此漏洞存在几个 api 提供的控制，在那里用户提供的输入处理作为内存的指针，而不进行适当的验证，允许攻击者读取和损坏从目标进程的内存。本模块滥用方法 NumChildren 和 DeleteItem 分别达到内存信息泄漏及远程执行代码。本模块对...

SIEMENS Solid Edge ST4 SEListCtrlX ActiveX Remote Code Execution Vulnerability

This Metasploit module exploits the SEListCtrlX ActiveX installed with the SIEMENS Solid Edge product. The vulnerability exists on several APIs provided by the control, where user supplied input is handled as a memory pointer without proper validation, allowing an attacker to read and corrupt...

SIEMENS Solid Edge ST4 SEListCtrlX ActiveX Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

Siemens Solid Edge SEListCtrlX ActiveX Control SetItemReadOnly Method Memory Address Write Arbitrary Code Execution

The remote host has the Siemens Solid Edge SEListCtrlX ActiveX control installed. This control has a flaw that could allow an attacker to execute arbitrary code via the 'SetItemReadOnly' method by tricking a user into opening a specially crafted web page. C Tenable Network Security, Inc...