CVE-2013-4988
CVE-2013-4988
Vexday Risk Score
50Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 67.0%KEV nãoPoC públicaNuclei —Metasploit simPatch —
Lifecycle
10 Dec 2013Metasploit module available
11 Dec 2013Public PoC
13 Dec 2013Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information.
Affected products
n/a · n/apublic PoCs found — 6
cve_referencepacketstormsecurity.com/files/124380/IcoFX-2.5.0.0-Buffer-Overflow.htmlunverifiedcve_referencepacketstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.htmlunverifiedcve_referencewww.exploit-db.com/exploits/30208unverifiedexploitdbwww.exploit-db.com/exploits/30208unverifiedexploitdbwww.exploit-db.com/exploits/30788unverifiedexploitdbwww.exploit-db.com/exploits/49959unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://archives.neohapsis.com/archives/bugtraq/2013-12/0046.htmlhttp://osvdb.org/100826http://packetstormsecurity.com/files/124380/IcoFX-2.5.0.0-Buffer-Overflow.htmlhttp://packetstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.htmlhttp://seclists.org/fulldisclosure/2013/Dec/54http://secunia.com/advisories/55964https://exchange.xforce.ibmcloud.com/vulnerabilities/89611http://www.coresecurity.com/advisories/icofx-buffer-overflow-vulnerabilityhttp://www.exploit-db.com/exploits/30208http://www.securityfocus.com/bid/64221