CVE-2009-1608

Microchip MPLAB IDE 8.30 - Buffer Overflow via .MCP Project File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1608.

AI-analyzed exploit summary This exploit targets a structured exception handler (SEH) overwrite vulnerability in MPLAB IDE 8.30 by crafting a malicious .mcp project file. It uses a buffer overflow to overwrite the SEH record and execute arbitrary shellcode (calc.exe in this case).

Description

Multiple buffer overflows in Microchip MPLAB IDE 8.30 and possibly earlier versions allow user-assisted remote attackers to execute arbitrary code via a .MCP project file with long (1) FILE_INFO, (2) CAT_FILTERS, and possibly other fields.

Exploits (1)

exploitdb WORKING POC

pythonlocalwindows

https://www.exploit-db.com/exploits/8656

View Code ZIP pw:eip

This exploit targets a structured exception handler (SEH) overwrite vulnerability in MPLAB IDE 8.30 by crafting a malicious .mcp project file. It uses a buffer overflow to overwrite the SEH record and execute arbitrary shellcode (calc.exe in this case).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: MPLAB IDE 8.30

No auth needed

Prerequisites: Victim must open the malicious .mcp file in MPLAB IDE 8.30

MITRE ATT&CK