CVE-2005-0185

NodeManager Professional 2.00 - Remote Code Execution via Long OCTET-STRING in LinkDown-Trap Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0185. PoCs published by Tan Chew Keong.

AI-analyzed exploit summary This exploit targets a stack-based buffer overflow in NodeManager Professional V2.00 via a maliciously crafted SNMPv1 trap packet. It includes shellcode to bind a shell on port 2001, demonstrating remote code execution.

Description

Stack-based buffer overflow in NodeManager Professional 2.00 allows remote attackers to execute arbitrary commands via a LinkDown-Trap packet that contains a long OCTET-STRING in the Trap variable-bindings field.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Tan Chew Keong · c++remotewindows

https://www.exploit-db.com/exploits/761

View Code ZIP pw:eip

This exploit targets a stack-based buffer overflow in NodeManager Professional V2.00 via a maliciously crafted SNMPv1 trap packet. It includes shellcode to bind a shell on port 2001, demonstrating remote code execution.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: NodeManager Professional V2.00

No auth needed

Prerequisites: Network access to the target's SNMP port (162/UDP) · Vulnerable version of NodeManager Professional running on Windows 2000/XP

MITRE ATT&CK