CVE-2006-0468

CommuniGate Pro < 5.0.7 - Denial of Service and Remote Code Execution via LDAP BER Length Manipulation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0468. PoCs published by Evgeny Legerov.

AI-analyzed exploit summary This exploit targets a remote denial-of-service vulnerability in CommuniGate Pro Server's LDAP component, potentially leading to arbitrary code execution. It sends a malformed LDAP packet to trigger a segmentation fault in the server.

Description

CommuniGate Pro Core Server before 5.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via LDAP messages with negative BER lengths, and possibly other vectors, as demonstrated by the ProtoVer LDAP test suite.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Evgeny Legerov · pythondoslinux

https://www.exploit-db.com/exploits/27144

View Code ZIP pw:eip

This exploit targets a remote denial-of-service vulnerability in CommuniGate Pro Server's LDAP component, potentially leading to arbitrary code execution. It sends a malformed LDAP packet to trigger a segmentation fault in the server.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: CommuniGate Pro Server 5.0.6

No auth needed

Prerequisites: Network access to the target LDAP service (port 389)

MITRE ATT&CK