Vulnerability Details : CVE-2013-3928
Public exploit exists!
Stack-based buffer overflow in the ReadFile function in flt_BMP.dll in Chasys Draw IES before 4.11.02 allows remote attackers to execute arbitrary code via crafted biPlanes and biBitCount fields in a BMP file.
Vulnerability category: OverflowExecute code
Products affected by CVE-2013-3928
- cpe:2.3:a:jpchacha:chasys_draw_ies:*:*:*:*:*:*:*:*
- cpe:2.3:a:jpchacha:chasys_draw_ies:4.01.01:*:*:*:*:*:*:*
- cpe:2.3:a:jpchacha:chasys_draw_ies:4.00.01:*:*:*:*:*:*:*
- cpe:2.3:a:jpchacha:chasys_draw_ies:4.03.02:*:*:*:*:*:*:*
- cpe:2.3:a:jpchacha:chasys_draw_ies:4.02.01:*:*:*:*:*:*:*
- cpe:2.3:a:jpchacha:chasys_draw_ies:4.06.02:*:*:*:*:*:*:*
- cpe:2.3:a:jpchacha:chasys_draw_ies:4.04.01:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-3928
92.50%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2013-3928
-
Chasys Draw IES Buffer Overflow
Disclosure Date: 2013-07-26First seen: 2020-04-26exploit/windows/fileformat/chasys_draw_ies_bmp_bofThis module exploits a buffer overflow vulnerability found in Chasys Draw IES (version 4.10.01). The vulnerability exists in the module flt_BMP.dll, while parsing BMP files, where the ReadFile function is used to store user provided data on the stack in an insecure
CVSS scores for CVE-2013-3928
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
CWE ids for CVE-2013-3928
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-3928
-
https://docs.google.com/file/d/0BzyiGAtMizMtSFF4ZWVCMHNVVGs/edit?usp=sharing
Chasys Draw IES 4 Stack Based Overflow by L0ngin0s & soez.pdf - Google Drive
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/86035
Chasys Draw IES flt_BMP.dll buffer overflow CVE-2013-3928 Vulnerability Report
-
http://packetstormsecurity.com/files/122810/Chasys-Draw-IES-Buffer-Overflow.html
Chasys Draw IES Buffer Overflow ≈ Packet StormExploit
-
http://longinox.blogspot.com/2013/08/explot-stack-based-overflow-bypassing.html
Los mundos de L0ngin0x: Stack Based Overflow Exploit bypassing DEP for Chasys Draw IES 4 (POC)
-
http://www.securityfocus.com/bid/61463
Chasys Draw IES CVE-2013-3928 Multiple Remote Buffer Overflow Vulnerabilities
-
http://www.exploit-db.com/exploits/27609
Chasys Draw IES - Local Buffer Overflow (Metasploit) - Windows local ExploitExploit
-
http://www.jpchacha.com/chasysdraw/help.php?file=history.htm
Chasys Draw IES Help: History
Jump to