The Nsauditor system has a buffer overflow vulnerability in the DNS Lookup tool, which allows a local attacker to execute arbitrary code and gain control of the system. This occurs when the system fails to properly handle malicious input, allowing an attacker to overwrite the structured exception handling (SEH) chain and inject shellcode. As a result, an attacker can execute malicious code with application privileges.
Nsauditor 3.0.28.0 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying malicious input to the DNS Lookup tool. Attackers can craft a payload with SEH chain overwrite and inject shellcode through the DNS Query field to achieve code execution with application privileges.
Local users of the Nsauditor system are at high risk of having their system compromised by an attacker, which could result in arbitrary code execution, data theft, and financial loss.
Remediation Recommended
This vulnerability carries significant risk. Schedule patching in your next cycle.
What should I do?
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
Affected Products
4
References
nsasoft / nsauditor
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability
Impact