MEDCIN Engine Memory Write/Heap Buffer Overflow module.

MEDCIN Engine Memory Write/Heap Buffer Overflow module.

CVE-2015-2898-2901, CVE-2015-6006 POC Exploit & Metasploit module This is a proof of concept exploit for version 2.22.20142.166 and prior of the MEDCIN Engine (medcinserv.exe or medcinservv22.exe).medcine-engine-module more info: https://www.securifera.com/blog/2016/01/06/medcin-engine-exploitation-part-2-cve-2015-2898-2901-cve-2015-6006/
Module Description:
This module exploits three separate vulnerabilities. The first vulnerability allows an attacker to leak back all of the data in the process’s data section. The second vulnerability allows the overwrite of a function pointer in the data section to somewhere controlled in the heap. The last vulnerability allows for the overflow of the heap into the allocation pointed to by the overwritten function pointer.

Module Show Option

Module Show Option

Usage:

medcin_bof.rb Script:

DECRUX.py Script :

Source :  https://github.com/securifera