cbcvebase.
CVE-2011-3488
published 2011-09-16

CVE-2011-3488: Use-after-free vulnerability in Equis MetaStock 11 and earlier allows remote attackers to execute arbitrary code via a malformed (1) mwc chart, (2) mws chart…

PriorityP258critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
4.73%
90.7th percentile
Use-after-free vulnerability in Equis MetaStock 11 and earlier allows remote attackers to execute arbitrary code via a malformed (1) mwc chart, (2) mws chart, (3) mwt template, or (4) mwl layout.

Affected

7 ranges
VendorProductVersion rangeFixed in
equismetastock<= 11.0
equismetastock
equismetastock
equismetastock
equismetastock
equismetastock
equismetastock

Detection & IOCsextracted from sources · hover to see the quote

urlhttp://aluigi.org/poc/metastock_1.mwl
urlhttps://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/17836.mwl
filenamemetastock_1.mwl
bytes
offset 0x0000308B: 0x1E -> 0x40; offset 0x00003214: 0x74 -> 0x41; offset 0x00003215: 0x69 -> 0x41; offset 0x00003216: 0x76 -> 0x41; offset 0x00003217: 0x65 -> 0x41
  • Malformed .mwl, .mwc, .mws, or .mwt files targeting MetaStock <=11 trigger a use-after-free; look for EAX=0x41414141 and a call through [EAX+4] at Mswin+0x86378 (0x00486378) as crash/exploit indicator.
  • Suspicious MetaStock file types (.mwc, .mws, .mwt, .mwl) delivered remotely should be treated as potential exploit carriers for CVE-2011-3488.
  • ·No vendor fix was available at time of disclosure; affected versions are MetaStock 11 and earlier on Windows.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.