CVE-2005-0478

TrackerCam <= 5.12 - Buffer Overflow via Long User-Agent Header or PHP Script Argument

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2005-0478. PoCs published by Metasploit, hdm, including Metasploit module exploits/windows/http/trackercam_phparg_overflow.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in TrackerCam's PHP argument handling (CVE-2005-0478) to achieve remote code execution. It first uses a directory traversal flaw to fingerprint the system before triggering the overflow via a maliciously crafted 'userID' parameter.

Description

Multiple buffer overflows in TrackerCam 5.12 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP request with a long User-Agent header or (2) a long argument to an arbitrary PHP script.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16811

This Metasploit module exploits a stack buffer overflow in TrackerCam's PHP argument handling (CVE-2005-0478) to achieve remote code execution. It first uses a directory traversal flaw to fingerprint the system before triggering the overflow via a maliciously crafted 'userID' parameter.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: TrackerCam web server (all versions)
No auth needed
Prerequisites: Network access to TrackerCam web server (port 8090 by default) · Vulnerable version of TrackerCam installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by hdm · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/trackercam_phparg_overflow.rb

This Metasploit module exploits a stack buffer overflow in TrackerCam's PHP argument handling to achieve remote code execution. It leverages a directory traversal flaw to fingerprint the system before triggering the overflow via a crafted HTTP request.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: TrackerCam web server (versions vulnerable to CVE-2005-0478)
No auth needed
Prerequisites: Network access to TrackerCam web server on port 8090 · Vulnerable version of TrackerCam installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/19409
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/390918
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/19411
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/12592

Scores

EPSS 0.6536
EPSS Percentile 99.2%

Details

Status published
Products (1)
trackercam/trackercam < 5.12
Published Mar 30, 2005
Tracked Since Feb 18, 2026