CVE-2005-0153

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0153. PoCs published by Niels Heinen.

AI-analyzed exploit summary The provided text describes a directory traversal vulnerability (CVE-2005-0153) in Newsgrab, where insufficient sanitization of filenames allows an attacker to write files to arbitrary locations. It also mentions an insecure permissions issue (CVE-2005-0154) that could lead to information disclosure.

Description

Newsgrab 0.5.0pre4 - Multiple Local/Remote Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by Niels Heinen · textremotelinux

https://www.exploit-db.com/exploits/25080

View Code ZIP pw:eip

The provided text describes a directory traversal vulnerability (CVE-2005-0153) in Newsgrab, where insufficient sanitization of filenames allows an attacker to write files to arbitrary locations. It also mentions an insecure permissions issue (CVE-2005-0154) that could lead to information disclosure.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Newsgrab

No auth needed

Prerequisites: Ability to supply a malicious file to the target system

MITRE ATT&CK

T1006 - Direct Volume Access T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Newsgrab 0.5.0pre4 - Multiple Local/Remote Vulnerabilities

Exploitation Summary

Description

Exploits (1)

Details