CVE-2013-4988

IcoFX <2.5 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalwindows

https://www.exploit-db.com/exploits/30788

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Core Security · textdoswindows

https://www.exploit-db.com/exploits/30208

View Code ZIP pw:eip

exploitdb WORKING POC

by Austin Babcock · pythonlocalwindows

https://www.exploit-db.com/exploits/49959

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Marcos Accossatto, juan vazquez · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/icofx_bof.rb

View Code ZIP pw:eip

References (10)

[Exploit] http://archives.neohapsis.com/archives/bugtraq/2013-12/0046.html

[Exploit] http://packetstormsecurity.com/files/124380/IcoFX-2.5.0.0-Buffer-Overflow.html

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.html

[Exploit] http://seclists.org/fulldisclosure/2013/Dec/54

[Vendor Advisory] http://secunia.com/advisories/55964

[Exploit] http://www.coresecurity.com/advisories/icofx-buffer-overflow-vulnerability

[Exploit] http://www.exploit-db.com/exploits/30208

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/89611

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/64221

[Third Party Advisory, VDB Entry] http://osvdb.org/100826

Scores

EPSS 0.8055

EPSS Percentile 99.1%

Details

CWE

CWE-119

Status published

Products (11)

icofx/icofx 1.6

icofx/icofx 1.6.1

icofx/icofx 1.6.2

icofx/icofx 1.6.3

icofx/icofx 1.6.4

icofx/icofx 2.0

icofx/icofx 2.1

icofx/icofx 2.2

icofx/icofx 2.3

icofx/icofx 2.4

... and 1 more

Published Dec 13, 2013

Tracked Since Feb 18, 2026