CVE-2006-1941

Neon Responder 5.4 - Denial of Service via Crafted Clock Synchronisation Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1941. PoCs published by Stefan Lochbihler.

AI-analyzed exploit summary This exploit sends a malformed network packet to Neon Responders, triggering a denial-of-service condition by crashing the application. The code constructs a specific payload and sends it to the target host on port 4347.

Description

Neon Responder 5.4 for LANsurveyor allows remote attackers to cause a denial of service (application outage) via a crafted Clock Synchronisation packet that triggers an access violation.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Stefan Lochbihler · cdosmultiple

https://www.exploit-db.com/exploits/27668

View Code ZIP pw:eip

This exploit sends a malformed network packet to Neon Responders, triggering a denial-of-service condition by crashing the application. The code constructs a specific payload and sends it to the target host on port 4347.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Neon Responders 5.4 for Windows

No auth needed

Prerequisites: Network access to the target host · Target application running and listening on port 4347

MITRE ATT&CK