CVE-2017-17099

HIGH

Flexense SyncBreeze Enterprise <10.1.16 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2017-17099. PoCs published by wetw0rk.

AI-analyzed exploit summary This Metasploit module exploits an unauthenticated SEH-based buffer overflow in SyncBreeze Enterprise v10.1.16 via a maliciously crafted GET request. It overwrites the SEH record with a POP,POP,RET pointer from libspp.dll and executes arbitrary code under the NT AUTHORITY\SYSTEM account.

Description

There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. When sending a GET request with an excessive length, it is possible for a malicious user to overwrite the SEH record and execute a payload that would run under the Windows SYSTEM account.

Exploits (2)

exploitdb WORKING POC

by wetw0rk · rubyremotewindows

https://www.exploit-db.com/exploits/42984

View Code ZIP pw:eip

This Metasploit module exploits an unauthenticated SEH-based buffer overflow in SyncBreeze Enterprise v10.1.16 via a maliciously crafted GET request. It overwrites the SEH record with a POP,POP,RET pointer from libspp.dll and executes arbitrary code under the NT AUTHORITY\SYSTEM account.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SyncBreeze Enterprise v10.1.16

No auth needed

Prerequisites: Network access to the SyncBreeze HTTP server (port 80) · Target running SyncBreeze Enterprise v10.1.16

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WORKING POC 75 stars

by wetw0rk · poc

https://github.com/wetw0rk/Exploit-Development

View Code ZIP pw:eip

This repository contains functional exploit code for CVE-2016-10709, targeting the HackSys Extreme Vulnerable Driver (HEVD) with a stack overflow vulnerability. The exploit includes shellcode for token stealing and privilege escalation on Windows 10 x64 systems.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Complex

Reliability

Reliable

Target: HackSys Extreme Vulnerable Driver (HEVD)

No auth needed

Prerequisites: Access to the vulnerable driver · Windows 10 x64 environment

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1055 - Process Injection

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/42984/

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://packetstormsecurity.com/files/144586/Sync-Breeze-Enterprise-10.1.16-SEH-Overflow.html

Scores

CVSS v3 7.8

EPSS 0.1183

EPSS Percentile 95.5%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (1)

flexense/syncbreeze 10.1.16

Published Dec 03, 2017

Tracked Since Feb 18, 2026