Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2018-6892

Published: 11/02/2018 Updated: 06/10/2020
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 771
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Sync

Vulnerability Summary

An issue exists in CloudMe prior to 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling the program's execution flow and allowing arbitrary code execution.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cloudme sync

Exploits

Exploit DB: CloudMe Sync 1.11.2 Buffer Overflow - WoW64 (DEP Bypass)
# Exploit Title: CloudMe Sync v1112 Buffer Overflow - WoW64 - (DEP Bypass) # Date: 24012019 # Exploit Author: Matteo Malvica # Vendor Homepage:wwwcloudmecom/en # Software: wwwcloudmecom/downloads/CloudMe_1112exe # Category: Remote # Contact:twittercom/matteomalvica # Version: CloudMe Sync 1112 # Tested on: Window ...
Exploit DB: CloudMe Sync 1.10.9 - Stack-Based Buffer Overflow (Metasploit)
## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = GreatRanking include Msf::Exploit::Remote::Tcp include Msf::Exploit::Remote::Seh def initialize(info = {}) super(update_info(info, 'Nam ...
Exploit DB: CloudMe Sync < 1.11.0 - Buffer Overflow
[+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinxaltervistaorg [+] Source: hyp3rlinxaltervistaorg/advisories/CLOUDME-SYNC-UNAUTHENTICATED-REMOTE-BUFFER-OVERFLOWtxt [+] ISR: Apparition Security [+] SSD Beyond Security Submission: blogssecuriteamcom/indexphp/archives/3669 Vendor: ============= wwwclo ...
Exploit DB: Cloudme 1.9 - Buffer Overflow (DEP) (Metasploit)
# Exploit Title: Cloudme 19 - Buffer Overflow (DEP) (Metasploit) # Date: 2018-08-13 # Exploit Author: Raymond Wellnitz # Vendor Homepage: wwwcloudmecom # Version: 18x/19x # Tested on: Windows 7 x64 # CVE : 2018-6892 ## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/meta ...
Exploit DB: CloudMe 1.11.2 SEH Buffer Overflow
CloudMe version 1112 SEH buffer overflow exploit ...
Exploit DB: Cloudme 1.9 Buffer Overflow
This Metasploit module exploits a stack buffer overflow in Cloudme version 18x and 19x ...
Exploit DB: CloudMe Sync 1.9.2 Remote Buffer Overflow
CloudMe Sync version 192 remote buffer overflow exploit Tested on Win7 32b SP1 ...
Exploit DB: CloudMe Sync 1.10.9 Remote Buffer Overflow
CloudMe Sync versions 1109 and below suffer from an unauthenticated remote buffer overflow vulnerability ...
Exploit DB: CloudMe Sync 1.11.2 Buffer Overflow
CloudMe Sync version 1112 buffer overflow exploit with DEP bypass for WoW64 ...
Exploit DB: CloudMe Sync 1.11.2 Bufer Overflow
CloudMe Sync version 1112 buffer overflow exploit with egghunter ...
Exploit DB: CloudMe 1.11.2 Buffer Overflow
CloudMe version 1112 exploit that uses MSVCRTSystem to create a new user (boku:0v3R9000!) and add the new user to the Administrators group A requirement of successful exploitation is the CloudMeexe process must be running as administrator ...

Github Repositories

https://github.com/latortuga71/CVE-2018-6892-Golang

Ported Exploit From Python To Golang

CVE-2018-6892-Golang Ported Exploit From Python To Golang packetstormsecuritycom/files/157407/CloudMe-1112-Buffer-Overflowhtml

https://github.com/hsteigerFR/Cybersecurity-ROPChain

Cybersecurity - ROP Chain Author : Hugo Steiger Mentor : Fabrice Sabatier Full documentation (in french) : drivegooglecom/drive/folders/1zk0_hDLVdnrfNR9fUt-6JmRmidWrFUTV?usp=sharing This project was carried out as part as Mines Nancy last year "Information Systems Attacks" course, within the Computer Science Departement The projet goal was to create a ROP

https://github.com/manojcode/CloudMe-Sync-1.10.9---Buffer-Overflow-SEH-DEP-Bypass

My version - CloudMe-Sync-1.10.9---Buffer-Overflow-SEH-DEP-Bypass on Win7 x64 CVE-2018-6892

CloudMe-Sync-1109---Buffer-Overflow-SEH-DEP-Bypass My version - CloudMe-Sync-1109---Buffer-Overflow-SEH-DEP-Bypass on Win7 x64 CVE-2018-6892

https://github.com/lorenzoinvidia/CVE-Exploits

PoCs for public CVEs I have been working on

CVE-Exploits PoCs for public CVEs I have been working on Exploit List CVE-2018-6892: Stack-based buffer overflow in CloudMe 1112

References

CWE-119https://blogs.securiteam.com/index.php/archives/3669https://www.exploit-db.com/exploits/44027/http://hyp3rlinx.altervista.org/advisories/CLOUDME-SYNC-UNAUTHENTICATED-REMOTE-BUFFER-OVERFLOW.txthttps://www.exploit-db.com/exploits/44175/https://www.exploit-db.com/exploits/45197/https://www.exploit-db.com/exploits/46250/http://packetstormsecurity.com/files/157407/CloudMe-1.11.2-Buffer-Overflow.htmlhttp://packetstormsecurity.com/files/158716/CloudMe-1.11.2-SEH-Buffer-Overflow.htmlhttp://packetstormsecurity.com/files/159327/CloudMe-1.11.2-Buffer-Overflow.htmlhttps://www.exploit-db.com/exploits/48840https://nvd.nist.govhttps://github.com/latortuga71/CVE-2018-6892-Golanghttps://www.exploit-db.com/exploits/46250
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook