CVE-2000-1174

ethereal < 0.8.13 - Remote Code Execution via AFS ACL Parser Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1174. PoCs published by mat.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Ethereal 0.8.13's AFS packet parsing routine. It crafts a malicious UDP packet to overwrite the return address on the stack, executing arbitrary shellcode that binds a shell to port 36864.

Description

Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username.

Exploits (1)

exploitdb WORKING POC VERIFIED

by mat · cremoteunix

https://www.exploit-db.com/exploits/20414

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Ethereal 0.8.13's AFS packet parsing routine. It crafts a malicious UDP packet to overwrite the return address on the stack, executing arbitrary shellcode that binds a shell to port 36864.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Ethereal 0.8.13

No auth needed

Prerequisites: Network access to the target running Ethereal · Ability to send crafted UDP packets

MITRE ATT&CK