CVE-2007-4463

Fileinfo Plugin 2.0.9 - Denial of Service via Invalid RVA Address Function Pointer

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4463. PoCs published by Gynvael Coldwind.

AI-analyzed exploit summary The exploit describes a denial-of-service vulnerability in the FileInfo plugin for Total Commander due to improper handling of malformed PE files. The provided link points to a binary exploit (30512.exe) hosted on GitLab.

Description

The Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to cause a denial of service (unhandled exception) via an invalid RVA address function pointer in (1) an IMAGE_THUNK_DATA structure, involving the (a) OriginalFirstThunk and (b) FirstThunk IMAGE_IMPORT_DESCRIPTOR fields, or (2) the AddressOfNames IMAGE_EXPORT_DIRECTORY field in a PE file.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Gynvael Coldwind · textdoswindows

https://www.exploit-db.com/exploits/30512

View Code ZIP pw:eip

The exploit describes a denial-of-service vulnerability in the FileInfo plugin for Total Commander due to improper handling of malformed PE files. The provided link points to a binary exploit (30512.exe) hosted on GitLab.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Theoretical

Target: FileInfo plugin for Total Commander 2.09

No auth needed

Prerequisites: A malformed PE file · Victim interaction to open the file with Total Commander

MITRE ATT&CK