CVE-2002-0813

Cisco IOS 11.1-11.3 - Heap-Based Buffer Overflow via TFTP Long Filename

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0813. PoCs published by FX.

AI-analyzed exploit summary This is a proof-of-concept exploit for CVE-2002-0813, targeting a buffer overflow vulnerability in the TFTP server of Cisco IOS versions 11.1.x to 11.3.x. The exploit sends a maliciously crafted TFTP request with an overly long filename to trigger a heap overflow, potentially leading to remote code execution.

Description

Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote attackers to cause a denial of service (reset) or modify configuration via a long filename.

Exploits (1)

exploitdb WORKING POC VERIFIED

by FX · cdoshardware

https://www.exploit-db.com/exploits/21655

View Code ZIP pw:eip

This is a proof-of-concept exploit for CVE-2002-0813, targeting a buffer overflow vulnerability in the TFTP server of Cisco IOS versions 11.1.x to 11.3.x. The exploit sends a maliciously crafted TFTP request with an overly long filename to trigger a heap overflow, potentially leading to remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Racy

Target: Cisco IOS 11.1.x to 11.3.x

No auth needed

Prerequisites: Network access to the TFTP server on the target Cisco device · Knowledge of the stack address for the specific IOS build

MITRE ATT&CK