CVE-2005-1547

Bakbone Netvault - Remote Code Execution via Large Packet to Port 20031

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1547. PoCs published by nolimit.

AI-analyzed exploit summary This is a functional exploit for a remote heap overflow vulnerability in BakBone NetVault. It sends a crafted packet to trigger the overflow and includes shellcode to spawn a command shell on port 101.

Description

Heap-based buffer overflow in the demo version of Bakbone Netvault, and possibly other versions, allows remote attackers to execute arbitrary commands via a large packet to port 20031.

Exploits (1)

exploitdb WORKING POC VERIFIED

by nolimit · cremotewindows

https://www.exploit-db.com/exploits/990

View Code ZIP pw:eip

This is a functional exploit for a remote heap overflow vulnerability in BakBone NetVault. It sends a crafted packet to trigger the overflow and includes shellcode to spawn a command shell on port 101.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: BakBone NetVault (demo version)

No auth needed

Prerequisites: Network access to the target system · Target system running vulnerable version of BakBone NetVault

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=111600439331242&w=2

Scores

EPSS 0.0300

EPSS Percentile 85.6%

Details

Status published

Products (1)

bakbone/netvault 7.3

Published May 14, 2005

Tracked Since Feb 18, 2026