CVE-2005-0979

RUMBA 7.3 - Buffer Overflow via Profile File SysName Field

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0979. PoCs published by Bahaa Naamneh.

AI-analyzed exploit summary This exploit demonstrates buffer overflow vulnerabilities in RUMBA 7.3 and earlier by providing malformed RTO and WPA profile files. The RTO file contains an overly long 'SysName' field, while the WPA file is a hex dump with excessive 'x' characters, both designed to trigger overflows.

Description

Multiple buffer overflows in RUMBA 7.3 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via crafted values in a profile file, as demonstrated using a long SysName field.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Bahaa Naamneh · textdoswindows
https://www.exploit-db.com/exploits/25326

This exploit demonstrates buffer overflow vulnerabilities in RUMBA 7.3 and earlier by providing malformed RTO and WPA profile files. The RTO file contains an overly long 'SysName' field, while the WPA file is a hex dump with excessive 'x' characters, both designed to trigger overflows.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: RUMBA version 7.3 and prior
No auth needed
Prerequisites: Victim must load the malicious RTO or WPA profile file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111238364916500&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/12965
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/19934

Scores

EPSS 0.0479
EPSS Percentile 90.8%

Details

Status published
Products (2)
netmanage/rumba 7.3
netmanage/rumba 7.4
Published May 02, 2005
Tracked Since Feb 18, 2026