CVE-2006-2814

iShopCart - Buffer Overflow in vGetPost and main Functions

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2814. PoCs published by K-sPecial.

AI-analyzed exploit summary This exploit targets a buffer overflow in the vGetPost() function of ishopcart CGI, allowing arbitrary code execution via a crafted HTTP request. It includes custom shellcode that forks to avoid process termination by Apache.

Description

Multiple buffer overflows in the (1) vGetPost and (2) main functions in easy-scart.c through easy-scart6.c in iShopCart allow remote attackers to execute arbitrary code by sending a large amount of data containing "Submit" in an sslinvoice action, and allow remote attackers to have an unknown impact via a large amount of posted data.

Exploits (1)

exploitdb WORKING POC VERIFIED

by K-sPecial · cremotecgi

https://www.exploit-db.com/exploits/1862

View Code ZIP pw:eip

This exploit targets a buffer overflow in the vGetPost() function of ishopcart CGI, allowing arbitrary code execution via a crafted HTTP request. It includes custom shellcode that forks to avoid process termination by Apache.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ishopcart CGI (easy-scart6.c or earlier)

No auth needed

Prerequisites: Network access to the vulnerable CGI script · Knowledge of the target's IP and callback IP/port

MITRE ATT&CK