METASPLOIT-modules/exploits/windows/browser/indusoft_issymbol_internationalseparator.rb

METASPLOIT ruby WORKING POC
Exploit for CVE-2011-0340 - Advantech Studio < 7.0 - Memory Corruption
AI Analysis

This Metasploit module exploits a heap overflow in InduSoft Web Studio's ISSymbol.ocx via the InternationalSeparator() method, using heap spraying and ROP chains to achieve remote code execution. It targets multiple IE versions on Windows XP, Vista, and 7.

Attack Type
RCE
Complexity
complex
Reliability
reliable
MITRE ATT&CK
T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution
Loading exploit code...
Download ZIP Password: eip
Source
Platform Metasploit
Type poc
Platform win
Language ruby
Rank normal
Files 1
Authors
James Fitts Alexander Gavrun juan vazquez Dmitriy Pletnev
Vulnerability
CVE-2011-0340
Advantech Studio < 7.0 - Memory Corruption