CVE-2013-4988

Related Files

IcoFX 2.6 Buffer Overflow

Posted Jun 7, 2021

Authored by Austin Babcock

IcoFX version 2.6 .ico buffer overflow exploit with SEH and DEP bypass using JOP.

tags | exploit, overflow

advisories | CVE-2013-4988

SHA-256 | dec3fa052080aec8e47348ac302321998bce19208ebdd8e11b3a472dd62bcdca

Download | Favorite | View

IcoFX Stack Buffer Overflow

Posted Jan 3, 2014

Authored by juan vazquez, Marcos Accossatto | Site metasploit.com

This Metasploit module exploits a stack-based buffer overflow vulnerability in version 2.1 of IcoFX. The vulnerability exists while parsing .ICO files, where an specially crafted ICONDIR header, providing an arbitrary long number of images into the file, can be used to trigger the overflow when reading the ICONDIRENTRY structures.

tags | exploit, overflow, arbitrary

advisories | CVE-2013-4988

SHA-256 | 8cd7f9efd93b9d23aadcbf265eaa6316d2fbab2ce2af6ffed7b083782a1ac162

Download | Favorite | View

IcoFX 2.5.0.0 Buffer Overflow

Posted Dec 11, 2013

Authored by Core Security Technologies, Marcos Accossatto | Site coresecurity.com

Core Security Technologies Advisory - IcoFX is prone to a (client side) security vulnerability when processing .ICO files. This vulnerability could be exploited by a remote attacker to execute arbitrary code on the target machine, by enticing the user of IcoFX to open a specially crafted icon file. Version 2.5.0.0 for Windows is affected.

tags | exploit, remote, arbitrary

systems | windows

advisories | CVE-2013-4988

SHA-256 | e6dff7d349a0e93cb8dcc794915fdfde76e566041ccccf904fc0244c16a59b12

Download | Favorite | View