cbcvebase.
CVE-2014-3791
published 2014-05-20

CVE-2014-3791: Stack-based buffer overflow in Easy File Sharing (EFS) Web Server 6.8 allows remote attackers to execute arbitrary code via a long string in a cookie UserID…

PriorityP268critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
76.20%
99.5th percentile
Stack-based buffer overflow in Easy File Sharing (EFS) Web Server 6.8 allows remote attackers to execute arbitrary code via a long string in a cookie UserID parameter to vfolder.ghp.

Affected

2 ranges
VendorProductVersion rangeFixed in
efssofteasy_file_sharing_web_server
sharing-fileeasy_file_sharing_web_server

Detection & IOCsextracted from sources · hover to see the quote

  • ·The exploit and shellcode were tested specifically against the English version of Windows XP Professional SP2 and SP3; behavior on other OS versions or locales is not confirmed.
  • ·The CALL ESI gadget used to redirect execution is located at the static address 0x10023701; this address is specific to the EFS Web Server 6.8 binary and may differ across versions.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.