CVE-2005-0575

Stormy Studios Knet <= 1.04c - Buffer Overflow via Long HTTP GET Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2005-0575. PoCs published by Wireghoul, Myo Soe, CorryL.

AI-analyzed exploit summary This exploit targets a stack-based buffer overflow in KNet Web Server 1.04b by sending a maliciously crafted HTTP request with a payload that overwrites EIP and executes shellcode (spawning calc.exe). The PoC includes a NOP sled and a hardcoded return address to trigger execution.

Description

Buffer overflow in Stormy Studios Knet 1.04c and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP GET request.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Wireghoul · perlremotewindows
https://www.exploit-db.com/exploits/24950

This exploit targets a stack-based buffer overflow in KNet Web Server 1.04b by sending a maliciously crafted HTTP request with a payload that overwrites EIP and executes shellcode (spawning calc.exe). The PoC includes a NOP sled and a hardcoded return address to trigger execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: KNet Web Server 1.04b
No auth needed
Prerequisites: Network access to the target server · KNet Web Server 1.04b running on Windows XP SP3 (or similar vulnerable environment)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Myo Soe · rubyremotewindows
https://www.exploit-db.com/exploits/24897

This exploit targets a buffer overflow vulnerability in KNet Web Server 1.04b via a crafted HTTP GET request. It leverages SEH overwrite with a bind shell payload to achieve remote code execution on Windows 7.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: KNet Web Server 1.04b
No auth needed
Prerequisites: Network access to the target server · KNet Web Server 1.04b running on Windows 7
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by CorryL · cdoswindows
https://www.exploit-db.com/exploits/843

This exploit demonstrates a remote buffer overflow in KNet <= 1.04c by sending a maliciously crafted GET request with an oversized buffer (1023 bytes of 'A's). The PoC triggers a denial-of-service condition by overwriting the EIP register, causing the server to crash.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: KNet <= 1.04c
No auth needed
Prerequisites: Network access to the target server · KNet server running on a Windows platform
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC
by MayaOfVeil · poc
https://github.com/MayaOfVeil/CVE-2005-0575

This is a functional exploit for CVE-2005-0575, targeting a buffer overflow vulnerability in an unspecified software. It includes shellcode and a crafted HTTP request to trigger the exploit.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Unknown (likely a web server or service vulnerable to CVE-2005-0575)
No auth needed
Prerequisites: Network access to the target · Target software running on port 80
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/24897
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/24950
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/12671
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/14400
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=110943766505666&w=2

Scores

EPSS 0.3960
EPSS Percentile 97.4%

Details

Status published
Products (5)
stormy_studios/knet 1.0
stormy_studios/knet 1.2
stormy_studios/knet 1.3
stormy_studios/knet 1.4b
stormy_studios/knet 1.4c
Published May 02, 2005
Tracked Since Feb 18, 2026