FormatFactory 3.9.0 - (.task) Stack Overflow Vulnerability

2016-09-01T00:00:00
ID VULNERLAB:1935
Type vulnerlab
Reporter ZwX - [http://www.vulnerability-lab.com/show.php?user=ZwX]
Modified 2016-09-01T00:00:00

Description

A local stack buffer overflow vulnerability has been discovered in the official FormatFactory v3.9.0 software. The overflow vulnerability allows remote attackers to take-over the process by overwrite of the active registers.

A wrong validation check while loading a file (.task) results in a classic stack overflow that crashs the program. Remote attacker are finally able to overwrite for example the eip to control the vulnerable software process. The file format request in the software engine has no restriction of inputs or memory, when processing to request local .task files to queue.

The security risk of the issue is estimated as high with a cvss (common vulnerability scoring system) count of 6.0. Exploitation of the vulnerability requires a low privilege or restricted system user account without user interaction. Successful exploitation of the vulnerability results in computer system manipulation and compromise of the computer system.

Vulnerable File(s): [+] .task