METASPLOIT-modules/exploits/windows/fileformat/galan_fileformat_bof.rb

METASPLOIT ruby WORKING POC

Exploit for CVE-2009-20004 - gAlan 0.2.1 - Buffer Overflow

AI Analysis

This Metasploit module exploits a stack buffer overflow in gAlan 0.2.1 by crafting a malicious .galan file. It triggers a buffer overflow via a long string followed by a return address and shellcode to achieve remote code execution.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Metasploit

Type poc

Platform win

Language ruby

Rank normal

Files 1

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/galan_fileformat_bof.rb

Authors

Jeremy Brown loneferret

Vulnerability

CVE-2009-20004

gAlan 0.2.1 - Buffer Overflow