CVE-2005-1097

Rebrand P2P Share Spy <2.2 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1097. PoCs published by Kozan.

AI-analyzed exploit summary This exploit reads the plaintext password stored in the Windows Registry by P2P Share Spy 2.2 due to insecure storage practices. It leverages the RegOpenKeyEx and RegQueryValueEx functions to extract the password from the registry key.

Description

Rebrand P2P Share Spy 2.2 stores the user password in plaintext in the txtPassword value in the registry, which allows local users to gain privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Kozan · clocalwindows

https://www.exploit-db.com/exploits/920

View Code ZIP pw:eip

This exploit reads the plaintext password stored in the Windows Registry by P2P Share Spy 2.2 due to insecure storage practices. It leverages the RegOpenKeyEx and RegQueryValueEx functions to extract the password from the registry key.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: P2P Share Spy 2.2

No auth needed

Prerequisites: Local access to the target system · P2P Share Spy 2.2 installed

MITRE ATT&CK

T1552.002 - Credentials in Registry

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1013673

Scores

EPSS 0.0056

EPSS Percentile 42.2%

Details

Status published

Products (1)

rebrand/p2p_share_spy 2.2

Published May 02, 2005

Tracked Since Feb 18, 2026