The vulnerability is caused due to a boundary error within the parsing of disturbance .CFG and .DAT files, This can be exploited to cause a heap-based buffer overflow via a .CFG file with an overly long ASCII argument. This module runs a malicious web server on the Core Impact Console and waits for an unsuspecting user to trigger the exploit by connecting to it.
CVE Link
Exploit Platform
Exploit Type
Product Name