CVE-2009-4265

Ideal Administration 2009 <9.7.1 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2009-4265. PoCs published by Metasploit, dookie, Dr_IDE, including Metasploit module exploits/windows/fileformat/ideal_migration_ipj.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in PointDev IDEAL Migration and IDEAL Administration via a maliciously crafted .ipj file. It leverages a CALL EBP instruction to achieve arbitrary code execution on vulnerable Windows systems.

Description

Stack-based buffer overflow in Ideal Administration 2009 9.7.1, and possibly other versions, allows remote attackers to execute arbitrary code via a long Computer value in an .ipj project file.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubydosaix
https://www.exploit-db.com/exploits/16657

This Metasploit module exploits a stack buffer overflow in PointDev IDEAL Migration and IDEAL Administration via a maliciously crafted .ipj file. It leverages a CALL EBP instruction to achieve arbitrary code execution on vulnerable Windows systems.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: PointDev IDEAL Migration <= 4.5.1, IDEAL Administration <= 10.5
No auth needed
Prerequisites: Victim must open the malicious .ipj file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by dookie · rubylocalwindows
https://www.exploit-db.com/exploits/10332

This Metasploit module exploits a stack-based buffer overflow in IDEAL Administration v9.7 via a maliciously crafted .ipj file. It leverages a SEH overwrite with a universal return address (0x10010F2E) and includes a NOP sled followed by encoded payload execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: IDEAL Administration v9.7
No auth needed
Prerequisites: Victim must open the malicious .ipj file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Dr_IDE · pythonlocalwindows
https://www.exploit-db.com/exploits/10319

This exploit targets a local buffer overflow in IDEAL Administration 2009 v9.7 by crafting a malicious .ipj file. It overwrites EIP with a JMP ESP instruction from SHELL32.DLL and executes a shell_bind_tcp payload.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: IDEAL Administration 2009 v9.7
No auth needed
Prerequisites: Victim must open the malicious .ipj file in IDEAL Administration 2009 v9.7
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GREAT
by Dr_IDE, dookie, jduck · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ideal_migration_ipj.rb

This Metasploit module exploits a stack buffer overflow in IDEAL Migration and IDEAL Administration by crafting a malicious .ipj file. It leverages a CALL EBP or JMP ESP instruction to redirect execution to the payload, achieving remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: IDEAL Migration <= 4.5.1, IDEAL Administration <= 10.5
No auth needed
Prerequisites: Victim must open the malicious .ipj file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, URL Repurposed x_refsource_misc
http://freetexthost.com/abydoz3jwu
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37572

Scores

EPSS 0.3139
EPSS Percentile 98.0%

Details

CWE
CWE-119
Status published
Products (1)
pointdev/ideal_administration_2009 9.7.1
Published Dec 10, 2009
Tracked Since Feb 18, 2026