GE Fanuc CIMPLICITY 'w32rtr.exe' Remote Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

GE Fanuc CIMPLICITY 'w32rtr.exe' Remote Buffer Overflow Vulnerability

GE Fanuc CIMPLICITY is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into an insufficiently sized buffer.

An attacker can exploit this issue to execute arbitrary code or cause denial-of-service conditions.

Versions prior to CIMPLICITY 7.0 SIM 9 are vulnerable.