CVE-2009-1092

GeoVision LIVEAUDIO.LiveAudioCtrl.1 ActiveX Control 7.0 - Use-After-Free via GetAudioPlayingTime Method

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1092. PoCs published by Nine:Situations:Group.

AI-analyzed exploit summary This exploit targets a use-after-free vulnerability in the GeoVision LiveAudio ActiveX control (CVE-2009-1092) by passing malformed objects to the GetAudioPlayingTime() method, leading to arbitrary code execution via a Metasploit-generated Alpha2-encoded shellcode that launches calc.exe.

Description

Use-after-free vulnerability in the LIVEAUDIO.LiveAudioCtrl.1 ActiveX control in LIVEAU~1.OCX 7.0 for GeoVision DVR systems allows remote attackers to execute arbitrary code by calling the GetAudioPlayingTime method with certain arguments.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nine:Situations:Group · htmlremotewindows

https://www.exploit-db.com/exploits/8206

View Code ZIP pw:eip

This exploit targets a use-after-free vulnerability in the GeoVision LiveAudio ActiveX control (CVE-2009-1092) by passing malformed objects to the GetAudioPlayingTime() method, leading to arbitrary code execution via a Metasploit-generated Alpha2-encoded shellcode that launches calc.exe.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: GeoVision LiveAudio ActiveX Control (version 7.0)

No auth needed

Prerequisites: Victim must visit a malicious webpage using Internet Explorer with the vulnerable ActiveX control installed

MITRE ATT&CK