CVE-2013-6079
published 2013-10-11CVE-2013-6079: Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service (application crash) and possibly execute…
PriorityP432high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.27%
66.2th percentile
Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in the (1) registration code field in the activate license window or the (2) HKLM\SOFTWARE\MostGear\EasyLanFolderShare_V1\License registry key. NOTE: it is not clear from the original report whether this issue crosses privilege boundaries. If not, then it should not be included in CVE.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mostgear | easy_lan_folder_share | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Easy LAN Folder Share 3.2.0.100 - Local Buffer Overflow (SEH)
exploitdb·2013-08-03
CVE-2013-6079 Easy LAN Folder Share 3.2.0.100 - Local Buffer Overflow (SEH)
Easy LAN Folder Share 3.2.0.100 - Local Buffer Overflow (SEH)
---
#!/usr/bin/python
# ==========================================================================================
# Exploit Title: Easy LAN Folder Share Version 3.2.0.100 Buffer Overflow vulnerability (SEH)
# Date: 2013-08-03
# Exploit Author: sagi-
# Original Bug Found By: ariarat
# Vendor Homepage: http://www.mostgear.com
# Software Link: http://download.cnet.com/Easy-LAN-Folder-Share/3000-2085_4-10909166.html
# Version: 3.2.0.100
# Tested On: Windows XP Professional SP2 & SP3 (ENG)
# ==========================================================================================
# The registration code field in the 'activate license' window is vulnerable to a buffer overflow.
# This script generates a malicious registry file.
#
Exploit-DB
Easy LAN Folder Share 3.2.0.100 - Buffer Overflow
exploitdb·2013-06-14
CVE-2013-6079 Easy LAN Folder Share 3.2.0.100 - Buffer Overflow
Easy LAN Folder Share 3.2.0.100 - Buffer Overflow
---
# Exploit Title: Easy LAN Folder Share Version 3.2.0.100 Buffer Overflow vulnerability(SEH)
# Date: 14-06-2013
# Exploit Author: ariarat
# Vendor Homepage: http://www.mostgear.com
# Software Link: http://download.cnet.com/Easy-LAN-Folder-Share/3000-2085_4-10909166.html
# Version: 3.2.0.100
# Tested on: [ Windows 7 & windows XP sp2,sp3]
#============================================================================================
# After creating txt file,open created file and copy the AAA... string to clipboard and
# then paste in "Register -> Activate License -> Registration Code" section.
# ** type any character in User Name text field.
#
#============================================================================================
#
No writeups or analysis indexed.
http://osvdb.org/show/osvdb/94390http://packetstormsecurity.com/files/122677http://www.exploit-db.com/exploits/26214http://www.exploit-db.com/exploits/27316http://osvdb.org/show/osvdb/94390http://packetstormsecurity.com/files/122677http://www.exploit-db.com/exploits/26214http://www.exploit-db.com/exploits/27316
2013-10-11
Published