Stack-Based Buffer Overflow in Sunway ForceControl SNMP NetDBServer Service
CVE-2011-10032

9.3CRITICAL

Key Information:

Vendor

Sunway

Status
Forcecontrol
Vendor
CVE Published:
30 August 2025

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2011-10032?

The Sunway ForceControl software version 6.1 SP3 and earlier includes a vulnerability in the SNMP NetDBServer service that can be exploited via specially crafted packets. This vulnerability manifests as a stack-based buffer overflow, occurring when a malicious actor sends an oversized payload using opcode 0x57 to the service listening on TCP port 2001. Due to inadequate bounds checking during the parsing of incoming packets, it becomes possible for attacker-controlled data to overwrite critical structures, specifically the Structured Exception Handler (SEH). This can result in arbitrary code execution within the context of the affected service, enabling an unauthenticated attacker to potentially compromise the entire system.

Affected Version(s)

ForceControl * <= 6.1 SP3

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2011-10032 - Proof of Concept

CVE-2011-10032 - Proof of Concept

CVE-2011-10032 - Proof of Concept

References

https://raw.githubusercontent.com/rapid7/metasploit-frame...
exploit
https://www.exploit-db.com/exploits/18448
exploit
https://www.fortiguard.com/encyclopedia/ips/29449
third-party-advisory

CVSS V4

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Luigi Auriemma
.
CVE-2011-10032 : Stack-Based Buffer Overflow in Sunway ForceControl SNMP NetDBServer Service