Name of the Vulnerable Software and Affected Versions Галактика ERP (affected versions not specified)

Description The issue is related to architectural weaknesses in the remote procedure call handlers of the Галактика ERP system, specifically in the atlcore .dll library. This weakness allows for the invocation of code and reading of memory content at an arbitrary address when memory addresses are transmitted between the client and server. An attacker, who has passed the authentication procedure and is acting remotely, can exploit this issue to deliver shellcode to the server's memory and transfer control to it. This is achieved by calculating a VIP language expression and writing an arbitrary set of bytes to the server's address space, revealing the address at which the write operation was performed, utilizing the sqlAddStr API function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.