Skip to content

ismailcemunver/CVE-2024-29375

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 

Repository files navigation

CSV-Injection-PoC

CSV Injection in Addactis IBNRS 3.10.3.107
AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:L
CVSS: 7.1, Impact Score: 5.3, Exploitation Score: 1.3
Affected Components: Project Description, Identifiers, Custom Triangle Name (inside Input Triangles) and Yield Curve Name parameters

newpoc1
Screenshot 1: Injecting an Excel Formula as Project Description in order to Open Notepad

newpoc2
Screenshot 2: Saving the Malicious IBNRS Project that Contains the Formula as csv_injection_poc.ibnrs

newpoc3
Screenshot 3: Displaying the Saved File Location From Addactis IBNRS

newpoc4
Screenshot 4: Opening an Empty Excel Document

newpoc5
Screenshot 5: Exporting the Malicious .ibnrs File via Add-ins Tab in Excel

newpoc6
Screenshot 6: Waiting for File to be Loaded

newpoc7
Screenshot 7: OS Command Execution Request After Exporting IBNRS Project with Malicious Formula

newpoc8
Screenshot 8: Successfully Opening Notepad and Observing that the Project Description is Interpreted as Excel Formula

newpoc9
Screenshot 9: Displaying the Injected Excel Formula in Project Description Cell

About

CSV Injection in Addactis IBNRS 3.10.3.107

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published