InPage '.inp' File Parser Remote Code Execution Vulnerability

InPage is prone to a remote code-execution vulnerability.

An attacker can exploit this issue to execute arbitrary code within the context of the application. Failed exploit attempts will result in a denial-of-service condition.


Bugtraq ID: 94548
Class: Boundary Condition Error
CVE: CVE-2017-12824

Remote: Yes
Local: No
Published: Nov 23 2016 12:00AM
Updated: Jun 28 2018 08:00AM
Credit: Denis Legezo
Vulnerable: InPage InPage 0

Not Vulnerable:


The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.

Related Posts