CVE-2005-3694

centericq 4.20.0-r3 - Denial of Service via Short Zero-Length Packets

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-3694. PoCs published by Wernfried Haas.

AI-analyzed exploit summary This exploit sends a malformed packet to CenterICQ on port 7777, triggering a denial-of-service condition. The PoC establishes a TCP connection and sends a single byte (0x01), causing the client to crash.

Description

centericq 4.20.0-r3 with "Enable peer-to-peer communications" set allows remote attackers to cause a denial of service (segmentation fault and crash) via short zero-length packets, and possibly packets of length 1 or 2, as demonstrated using Nessus.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Wernfried Haas · cdoslinux

https://www.exploit-db.com/exploits/26666

View Code ZIP pw:eip

This exploit sends a malformed packet to CenterICQ on port 7777, triggering a denial-of-service condition. The PoC establishes a TCP connection and sends a single byte (0x01), causing the client to crash.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: CenterICQ (version not specified)

No auth needed

Prerequisites: Target IP address · CenterICQ running and listening on port 7777

MITRE ATT&CK