CVE-2006-6853

Durian Web Application Server 3.02 - Remote Code Execution via Long String in Crafted TCP Packet

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2006-6853. PoCs published by rgod.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Durian Web Application Server 3.02 for Win32. It sends a crafted payload to trigger the overflow and execute arbitrary shellcode, which spawns a command shell.

Description

Buffer overflow in Durian Web Application Server 3.02 freeware on Windows allows remote attackers to execute arbitrary code via a long string in a crafted packet to TCP port 4002.

Exploits (2)

exploitdb WORKING POC VERIFIED

by rgod · phpremotewindows

https://www.exploit-db.com/exploits/3037

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Durian Web Application Server 3.02 for Win32. It sends a crafted payload to trigger the overflow and execute arbitrary shellcode, which spawns a command shell.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Durian Web Application Server 3.02

No auth needed

Prerequisites: Network access to the target server · Durian Web Application Server 3.02 running on Windows

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by rgod · phpdoswindows

https://www.exploit-db.com/exploits/3038

View Code ZIP pw:eip

This exploit targets Durian Web Application Server 3.02 for Win32 by sending malformed packets to trigger access violations, resulting in a denial of service (DoS). It iterates through various buffer sizes and characters to flood the target with 1000 requests.