CVE-2006-4832

Verso NetPerformer FRAD ACT - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4832. PoCs published by Arif Jatmoko.

AI-analyzed exploit summary This Perl script exploits a buffer overflow vulnerability in the telnet service of Verso NetPerformer Frame Relay Access Device (FRAD). It sends a maliciously crafted LOGIN command with an excessively long string to trigger the overflow, potentially allowing remote code execution or causing a denial of service.

Description

Buffer overflow in the telnet service in Verso NetPerformer FRAD ACT SDM-95xx 7.xx (R1) and earlier, SDM-93xx 10.x.x (R2) and earlier, and SDM-92xx 9.x.x (R1) and earlier allows remote attackers to cause a denial of service (reboot) and possibly execute arbitrary code via a long username.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Arif Jatmoko · perldosmultiple

https://www.exploit-db.com/exploits/28542

View Code ZIP pw:eip

This Perl script exploits a buffer overflow vulnerability in the telnet service of Verso NetPerformer Frame Relay Access Device (FRAD). It sends a maliciously crafted LOGIN command with an excessively long string to trigger the overflow, potentially allowing remote code execution or causing a denial of service.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Verso NetPerformer Frame Relay Access Device (FRAD)

No auth needed

Prerequisites: Network access to the target device · Telnet service (port 23) exposed and running on the target

MITRE ATT&CK