Exploitation Summary
EIP tracks 5 public exploits for CVE-2005-1009.
PoCs published by Metasploit, class101, hdm, including Metasploit module exploits/windows/misc/bakbone_netvault_heap.
AI-analyzed exploit summary This exploit targets a heap overflow vulnerability in BakBone NetVault's Process Manager service (CVE-2005-1009). It sends a maliciously crafted packet to trigger the overflow and execute arbitrary payloads on vulnerable Windows systems.
Description
Multiple buffer overflows in BakBone NetVault 6.x and 7.x allow (1) remote attackers to execute arbitrary code via a modified computer name and length that leads to a heap-based buffer overflow, or (2) local users to execute arbitrary code via a long Name entry in the configure.cfg file.
Exploits (5)
This exploit targets a heap overflow vulnerability in BakBone NetVault's Process Manager service (CVE-2005-1009). It sends a maliciously crafted packet to trigger the overflow and execute arbitrary payloads on vulnerable Windows systems.
This exploit targets CVE-2005-1009, a buffer overflow vulnerability in NetVigilance's NVV1.0. It includes shellcode for a reverse shell and is designed to exploit the vulnerability by sending a maliciously crafted packet to the target system.
This exploit targets a local buffer overflow in BakBone NetVault's configuration file parsing. It modifies the 'configure.cfg' file to include shellcode that adds a local administrator user (class101:class101) upon service restart.
This exploit targets a heap overflow vulnerability in BakBone NetVault, sending a crafted packet to overwrite memory and execute shellcode, resulting in a remote command shell on port 101. It includes target-specific offsets for Windows 2000 and XP SP0-1.
This Metasploit module exploits a heap overflow in BakBone NetVault's Process Manager service (CVE-2005-1009) by sending a maliciously crafted packet to trigger memory corruption and execute arbitrary payloads. It includes target-specific return addresses and a structured payload delivery mechanism.