10-Strike Network Inventory Explorer 9.3 Buffer Overflow

Posted on 23 August 2022

10-Strike Network Inventory Explorer versions 9.3 and below are vulnerable to a SEH based buffer overflow which leads to code execution or local privilege escalation. The vulnerable part of the program is the functionality to add computers from a text file.