CVE-2005-0338

Savant Web Server 3.1 - Remote Code Execution via Long HTTP Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2005-0338. PoCs published by Jerome Athias, CorryL, Tal Zeltzer.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Savant web server (CVE-2005-0338) to achieve remote code execution. It uses a crafted HTTP request with shellcode to spawn a reverse shell or add a user, depending on the payload.

Description

Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Jerome Athias · pythonremotewindows
https://www.exploit-db.com/exploits/819

This exploit targets a buffer overflow vulnerability in Savant web server (CVE-2005-0338) to achieve remote code execution. It uses a crafted HTTP request with shellcode to spawn a reverse shell or add a user, depending on the payload.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Savant web server (versions affected by CVE-2005-0338)
No auth needed
Prerequisites: Network access to the target Savant web server · Savant web server running on a vulnerable Windows system
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by CorryL · perlremotewindows
https://www.exploit-db.com/exploits/787

This exploit targets a buffer overflow vulnerability in Savant Web Server 3.1, sending a crafted HTTP GET request with a payload that overwrites the EIP register to execute arbitrary shellcode, resulting in the creation of an administrator account.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Savant Web Server 3.1
No auth needed
Prerequisites: Network access to the target server · Savant Web Server 3.1 running on Windows 2003
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Tal Zeltzer · pythonremotewindows
https://www.exploit-db.com/exploits/781

This exploit targets a buffer overflow vulnerability in Savant web server, delivering a Metasploit-generated shellcode payload to add a user. It uses a hardcoded return address for Windows 2000 SP0-4 and sends the malicious buffer via a socket connection.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Savant web server (version not specified)
No auth needed
Prerequisites: Network access to the target server · Savant web server running on Windows 2000 SP0-4
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Mailing List mailing-list x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=110728448025559&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=110756234611259&w=2
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/12429
Mailing List mailing-list x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=110725682327452&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/19177

Scores

EPSS 0.0544
EPSS Percentile 91.7%

Details

Status published
Products (1)
savant/savant_webserver 3.1
Published May 02, 2005
Tracked Since Feb 18, 2026