CVE-2006-5112

InterVations NaviCOPA Web Server 2.01 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2006-5112. PoCs published by Metasploit, Jacopo Cervini, h07, including Metasploit module exploits/windows/http/navicopa_get_overflow.

AI-analyzed exploit summary This is a Metasploit module exploiting a stack buffer overflow in NaviCOPA 2.0.1 via malformed URL parameters. It delivers a payload to achieve remote code execution on vulnerable systems.

Description

Buffer overflow in InterVations NaviCOPA Web Server 2.01 allows remote attackers to execute arbitrary code via a long HTTP GET request.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16808

This is a Metasploit module exploiting a stack buffer overflow in NaviCOPA 2.0.1 via malformed URL parameters. It delivers a payload to achieve remote code execution on vulnerable systems.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: NaviCOPA 2.0.1
No auth needed
Prerequisites: Network access to the target's HTTP service (port 80)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Jacopo Cervini · remotewindows
https://www.exploit-db.com/exploits/3092

This exploit targets a stack-based buffer overflow in Navicopa Web Server 2.01 via a maliciously crafted HTTP GET request. It leverages a 'push esp, ret' instruction in IV320009.dll to redirect execution to the shellcode.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Navicopa Web Server 2.01
No auth needed
Prerequisites: Network access to the target server · Target server running Navicopa Web Server 2.01
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by h07 · cremotewindows
https://www.exploit-db.com/exploits/2445

This exploit targets a buffer overflow vulnerability in NaviCOPA Web Server 2.01, allowing remote code execution via a crafted HTTP GET request. It includes shellcode for a bind shell on port 4444 and supports multiple Windows targets.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: NaviCOPA Web Server 2.01
No auth needed
Prerequisites: Network access to the target server · Target must be running NaviCOPA Web Server 2.01
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GREAT
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/navicopa_get_overflow.rb

This Metasploit module exploits a stack buffer overflow in NaviCOPA 2.0.1 via a maliciously crafted URL parameter. It sends a long URL to trigger the overflow and execute arbitrary code.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: NaviCOPA 2.0.1
No auth needed
Prerequisites: Network access to the target · NaviCOPA 2.0.1 running on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/22124
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29221
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/20250
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/3819
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2445
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/693992

Scores

EPSS 0.6662
EPSS Percentile 99.2%

Details

Status published
Products (1)
intervations/navicopa_web_server 2.01
Published Oct 03, 2006
Tracked Since Feb 18, 2026