Key Information Vulnerability Name: ConSentry FIP Server v1.3.7 Beta Buffer Overflow Vulnerability Description: By sending a specially crafted USB packet to the server, it is possible to overwrite hardcoded function pointers, thereby executing arbitrary code. Affected Version: ConSentry FIP Server v1.3.7 Beta Platform: Windows XP SP3, Windows Server 2008 Disclosure Date: 2012-06-08 Author: Chao's Huang Module Type: Exploit::Remote Targets: - Windows XP SP3 - English - Windows Server 2008 - English Function Pointers: - Windows XP SP3: 0x7C90E514 (wsock32.dll) - Windows Server 2008: 0x77C21D44 (wsock32.dll) Fix Addresses: - Windows XP SP3: 0x71AB2626 - Windows Server 2008: 0x71U02031 Stability: UNKNOWN_STABILITY Side Effects: UNKNOWN_SIDE_EFFECTS Default Options: - EXITFUNC: seh - Platform: win - Payload: windows/meterpreter/reverse_tcp - Space: 1000 - BadChars: "\x00\x0a\x0d" - StackAdjustment: -3500 - DisablePayloadHandler: true