CVE-2023-54330 – This CVE describes a critical remote stack-base... (How to Fix)

Q: What is the severity of CVE-2023-54330?

CVE-2023-54330 has a CVSS score of 9.8 (CRITICAL). This CVE describes a critical remote stack-based buffer overflow vulnerability in Inbit Messenger versions 4.6.0 to 4.9.0. Unauthenticated attackers can send specially crafted network packets to execute arbitrary code on vulnerable Windows systems. Organizations running affected versions of Inbit Messenger are at risk of complete system compromise.

📋 TL;DR

This CVE describes a critical remote stack-based buffer overflow vulnerability in Inbit Messenger versions 4.6.0 to 4.9.0. Unauthenticated attackers can send specially crafted network packets to execute arbitrary code on vulnerable Windows systems. Organizations running affected versions of Inbit Messenger are at risk of complete system compromise.

💻 Affected Systems

Products:

Inbit Messenger

Versions: 4.6.0 to 4.9.0

Operating Systems: Windows

Default Config Vulnerable: ⚠️ Yes

Notes: All installations within the vulnerable version range are affected regardless of configuration.

📦 What is this software?

Inbit Messenger by Inbit

View all CVEs affecting Inbit Messenger →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system takeover with administrative privileges, data exfiltration, ransomware deployment, and lateral movement across the network.

🟠

Likely Case

Remote code execution leading to malware installation, backdoor persistence, and credential theft from the compromised system.

🟢

If Mitigated

Attack blocked at network perimeter with no internal systems exposed; minimal impact if proper segmentation exists.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: CONFIRMED

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit code is publicly available and requires no authentication; attackers can easily weaponize this vulnerability.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Not available

Restart Required: No

Instructions:

1. Check current Inbit Messenger version. 2. If version is between 4.6.0 and 4.9.0, immediately uninstall the software. 3. Consider alternative messaging solutions as vendor patch status is unknown.

🔧 Temporary Workarounds

Network Segmentation

all

Block all inbound network traffic to Inbit Messenger ports at firewall/network perimeter

Application Whitelisting

windows

Implement application control to prevent execution of unauthorized code

🧯 If You Can't Patch

Immediately isolate affected systems from network access
Deploy endpoint detection and response (EDR) solutions with behavioral monitoring

🔍 How to Verify

Check if Vulnerable:

Check Inbit Messenger version in Help > About menu; if version is 4.6.0, 4.7.0, 4.8.0, or 4.9.0, system is vulnerable.

Check Version:

Not applicable - check via application GUI

Verify Fix Applied:

Verify Inbit Messenger is completely uninstalled or upgraded to version above 4.9.0 (if available).

📡 Detection & Monitoring

Log Indicators:

Unusual network connections to Inbit Messenger ports
Process creation anomalies from messenger.exe
SEH overwrite exceptions in Windows event logs

Network Indicators:

Malformed packets to Inbit Messenger default ports
Unusual payload patterns in network traffic to messenger service

SIEM Query:

source="windows" AND (event_id=4625 OR event_id=4688) AND process_name="messenger.exe" AND (command_line CONTAINS "-malicious" OR parent_process CONTAINS "suspicious")

📊 Metadata

CVE ID: CVE-2023-54330

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-121

EPSS Score: 0.27% exploit probability (49.8th percentile)

Published: January 13, 2026

Last Updated: January 30, 2026

🔗 References

https://github.com/a-rey/exploits/blob/main/writeups/Inbit_Messenger/v4.6.0/writeup.md Exploit,Third Party Advisory
https://web.archive.org/web/20200122082432/https://www.softsea.com/review/Inbit-Messenger-Basic-Edition.html Product
https://www.exploit-db.com/exploits/51126 Exploit,Third Party Advisory
https://www.vulncheck.com/advisories/inbit-messenger-unauthenticated-remote-seh-overflow Third Party Advisory
https://github.com/a-rey/exploits/blob/main/writeups/Inbit_Messenger/v4.6.0/writeup.md Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-54330, you might also want to check these: