CVE-2005-2120

This exploit triggers a denial-of-service (DoS) in Microsoft's UMPNPMGR.dll by sending a malformed PNP_GetDeviceList request with an excessively long path, causing services.exe to crash. It follows a multi-step SMB/DCE-RPC negotiation process to reach the vulnerable function.

This exploit targets CVE-2005-2120, a buffer overflow vulnerability in the Windows Plug and Play service. It uses a malformed RPC request to trigger the overflow, potentially leading to remote code execution.

This Metasploit module exploits a stack buffer overflow in the Windows Plug and Play service (MS05-047) via a maliciously crafted DCERPC request, leading to a denial-of-service (reboot) on Windows 2000. Code execution is possible under specific memory conditions.