CVE-2020-29659

CRITICAL

Flexense DupScout Enterprise 10.0.18 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-29659. PoCs published by Andrés Roldán.

AI-analyzed exploit summary This exploit targets a remote buffer overflow vulnerability in Dup Scout Enterprise 10.0.18 via the 'sid' parameter. It leverages SEH overwrite with a structured payload to achieve remote code execution using a bind shell payload.

Description

A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack.

Exploits (1)

exploitdb WORKING POC

by Andrés Roldán · pythonremotewindows

https://www.exploit-db.com/exploits/49217

View Code ZIP pw:eip

This exploit targets a remote buffer overflow vulnerability in Dup Scout Enterprise 10.0.18 via the 'sid' parameter. It leverages SEH overwrite with a structured payload to achieve remote code execution using a bind shell payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Dup Scout Enterprise 10.0.18

No auth needed

Prerequisites: Network access to the target · Dup Scout Enterprise 10.0.18 running on Windows

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://www.exploit-db.com/exploits/49217

Product x_refsource_misc

https://www.dupscout.com

Exploit, Third Party Advisory x_refsource_confirm

https://fluidattacks.com/advisories/prine/

Scores

CVSS v3 9.8

EPSS 0.0509

EPSS Percentile 91.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-120

Status published

Products (1)

flexense/dupscout 10.0.18

Published Dec 09, 2020

Tracked Since Feb 18, 2026