CVE-2013-0726

This Metasploit module exploits a buffer overflow in ERS Viewer 2011 (v11.04) via a maliciously crafted .ers file, leading to arbitrary code execution. The exploit leverages a vulnerable function in ermapper_u.dll and includes a custom NOP sled to maintain ESP integrity.

This Metasploit module exploits a buffer overflow vulnerability in ERS Viewer 2011 (v11.04) by crafting a malicious .ers file that triggers arbitrary code execution when opened. The exploit leverages a stack-based overflow in the `ERM_convert_to_correct_webpath` function within `ermapper_u.dll`.