CVE-2011-2960

Sunway ForceControl 6.1 SP1-SP3 - Heap-Based Buffer Overflow via Crafted URL

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-2960. PoCs published by Dillon Beresford.

AI-analyzed exploit summary This exploit targets a heap-based buffer overflow in Sunway ForceControl, allowing arbitrary code execution via a crafted HTTP GET request. The payload includes shellcode for a Windows calculator pop-up and leverages SEH overwrites for control flow manipulation.

Description

Heap-based buffer overflow in httpsvr.exe 6.0.5.3 in Sunway ForceControl 6.1 SP1, SP2, and SP3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted URL.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dillon Beresford · textremotewindows

https://www.exploit-db.com/exploits/35864

View Code ZIP pw:eip

This exploit targets a heap-based buffer overflow in Sunway ForceControl, allowing arbitrary code execution via a crafted HTTP GET request. The payload includes shellcode for a Windows calculator pop-up and leverages SEH overwrites for control flow manipulation.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Sunway ForceControl (version not specified)

No auth needed

Prerequisites: Network access to the target device · Sunway ForceControl running on port 80

MITRE ATT&CK