CVE-2011-1567

This Metasploit module exploits a buffer overflow in 7-Technologies IGSS 9 IGSSdataServer via the 'Rename', 'Delete', or 'Add' commands. It uses an egghunter to locate the payload in memory due to limited stack space.

This Metasploit module exploits a stack overflow in 7-Technologies IGSS <= v9.00.00 b11063 via a malformed ListAll command, allowing unauthenticated remote code execution by overwriting a structured exception handling record.

The exploit demonstrates multiple vulnerabilities in IGSSdataServer.exe, including directory traversal and remote stack overflows via crafted packets sent to port 12401. Proof-of-concept code is provided for downloading, uploading, and executing arbitrary files, as well as triggering buffer overflows.

This Metasploit module exploits a buffer overflow in 7-Technologies IGSS 9 IGSSdataServer via the 'Rename' command, achieving remote code execution through a multi-stage attack involving an egghunter and ROP chain.

This Metasploit module exploits a stack-based buffer overflow in 7-Technologies IGSS IGSSdataServer.exe (CVE-2011-1567) via a malformed ListAll command, allowing unauthenticated remote code execution. It uses ROP chains and an egghunter to bypass DEP and execute arbitrary payloads.