CVE-2010-3894

IBM OmniFind Enterprise Edition < 8.5 FP6 - Stack-based Buffer Overflow via Long Password

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3894. PoCs published by Fatih Kilic.

AI-analyzed exploit summary This is a detailed writeup describing a remote buffer overflow vulnerability (CVE-2010-3894) in IBM's administration interface. It explains the exploit mechanism, including two attack points involving register manipulation and return address overwriting to achieve remote code execution.

Description

Stack-based buffer overflow in the Java_com_ibm_es_oss_CryptionNative_ESEncrypt function in /opt/IBM/es/lib/libffq.cryptionjni.so in the login form in the administration interface in IBM OmniFind Enterprise Edition before 8.5 FP6 allows remote attackers to execute arbitrary code via a long password.

Exploits (1)

exploitdb WRITEUP

by Fatih Kilic · textdosmultiple

https://www.exploit-db.com/exploits/15474

View Code ZIP pw:eip

This is a detailed writeup describing a remote buffer overflow vulnerability (CVE-2010-3894) in IBM's administration interface. It explains the exploit mechanism, including two attack points involving register manipulation and return address overwriting to achieve remote code execution.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Complex

Reliability

Theoretical

Target: IBM administration interface (specific version not specified)

Auth required

Prerequisites: Valid username (default: 'esadmin') · Network access to the administration interface

MITRE ATT&CK