CVE-2005-0340

Apple AFP Server - Denial of Service via Negative UAM String Length in FPLoginExt Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0340. PoCs published by nemo.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the AFP (Apple Filing Protocol) service. It crafts a malicious packet with oversized UAM data to trigger the vulnerability, potentially leading to a denial of service or remote code execution.

Description

Integer signedness error in Apple File Service (AFP Server) allows remote attackers to cause a denial of service (application crash) via a negative UAM string length in a FPLoginExt packet.

Exploits (1)

exploitdb WORKING POC VERIFIED

by nemo · cdososx

https://www.exploit-db.com/exploits/799

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the AFP (Apple Filing Protocol) service. It crafts a malicious packet with oversized UAM data to trigger the vulnerability, potentially leading to a denial of service or remote code execution.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Apple Filing Protocol (AFP) service

No auth needed

Prerequisites: Network access to the target AFP service

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/19263

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=110791369419784&w=2

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/12478

Patch vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2005/Mar/msg00000.html

Scores

EPSS 0.0320

EPSS Percentile 86.5%

Details

Status published

Products (1)

apple/afp_server

Published May 02, 2005

Tracked Since Feb 18, 2026