CVE-2004-1854
Picophone internet_telephone 1.63 - Buffer Overflow via Large Packet
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-1854. PoCs published by Luigi Auriemma.
AI-analyzed exploit summary The provided text describes a remote buffer overflow vulnerability in Picophone, which can lead to denial of service or arbitrary code execution. However, no actual exploit code is included in the snippet.
Description
Buffer overflow in the logging function in Picophone 1.63 and earlier allows remote attackers to execute arbitrary code via a large packet.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Luigi Auriemma · textdoshardware
https://www.exploit-db.com/exploits/23876
The provided text describes a remote buffer overflow vulnerability in Picophone, which can lead to denial of service or arbitrary code execution. However, no actual exploit code is included in the snippet.
Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target:
Picophone (version not specified)
No auth needed
Prerequisites:
Network access to the vulnerable Picophone service
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (7)
Core 7
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108016032220647&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15595
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1009551
Exploit, Vendor Advisory vdb-entry
x_refsource_osvdb
http://www.osvdb.org/4550
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/9969
Exploit, Patch, Vendor Advisory x_refsource_misc
http://aluigi.altervista.org/adv/picobof-adv.txt
Exploit, Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/11209
Scores
EPSS
0.0692
EPSS Percentile
93.3%
Details
Status
published
Products (1)
picophone/internet_telephone
1.63
Published
Mar 24, 2004
Tracked Since
Feb 18, 2026