CVE-2010-4557

Invensys Wonderware InBatch 8.1 and 9.0 - Buffer Overflow via Crafted Request to Port 9001

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-4557. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Wonderware InBatch's lm_tcp service (port 9001), allowing arbitrary memory writes via overwritten pointers used in memset operations. The PoC uses a crafted UDP packet to trigger the overflow.

Description

Buffer overflow in the lm_tcp service in Invensys Wonderware InBatch 8.1 and 9.0, as used in Invensys Foxboro I/A Series Batch 8.1 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted request to port 9001.

Exploits (1)

exploitdb WORKING POC

by Luigi Auriemma · textdosmultiple

https://www.exploit-db.com/exploits/15707

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Wonderware InBatch's lm_tcp service (port 9001), allowing arbitrary memory writes via overwritten pointers used in memset operations. The PoC uses a crafted UDP packet to trigger the overflow.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Wonderware InBatch <= 9.0sp1 (lm_tcp <= 9.0.0 0248.18.0.0)

No auth needed

Prerequisites: Network access to port 9001 · lm_tcp service running

MITRE ATT&CK