CVE-2005-1815

Hummingbird Connectivity - Buffer Overflow

Title source: rule

Description

Multiple buffer overflows in Hummingbird Connectivity inetD 10.0.0.1 and 9.0.0.4 allows attackers to cause a denial of service and possibly execute arbitrary code via (1) an FTP command with a long argument to FTPD (ftpdw.exe) or (2) a large amount of data to LPD (Lpdw.exe).

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16337

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/lpd/hummingbird_exceed.rb

View Code ZIP pw:eip

References (5)

[Patch, Vendor Advisory] http://www.securityfocus.com/bid/13788

[Patch, Vendor Advisory] http://www.securityfocus.com/bid/13790

[Patch, Vendor Advisory] http://secunia.com/advisories/15557

[Patch] http://connectivity.hummingbird.com/support/nc/exceed/lpdw_advisory.html

[Patch] http://connectivity.hummingbird.com/support/nc/exceed/ftpd_advisory.html?cks=y

Scores

EPSS 0.6287

EPSS Percentile 98.4%

Details

Status published

Products (3)

hummingbird/connectivity 7.1

hummingbird/connectivity 9.0

hummingbird/connectivity 10.0

Published Jun 01, 2005

Tracked Since Feb 18, 2026