CVE-2007-0228

EIQ Networks Enterprise Security Analyzer - Denial of Service via Malformed TCP Packet to Port 10618

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0228. PoCs published by Ethan Hunt.

AI-analyzed exploit summary This exploit triggers a DoS condition in the target service by sending specific malformed function names, causing an access violation during a call to FindIndex. The PoC demonstrates the vulnerability by crashing the service upon connection.

Description

The DataCollector service in EIQ Networks Network Security Analyzer allows remote attackers to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) &LOGPATH& (6) &FWADELTA& (7) &FWALOG& (8) &SETSYNCHRONOUS& (9) &SETPRGFILE&, or (10) &SETREPLYPORT& string to TCP port 10618, which triggers a NULL pointer dereference.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ethan Hunt · pythondoswindows

https://www.exploit-db.com/exploits/3112

View Code ZIP pw:eip

This exploit triggers a DoS condition in the target service by sending specific malformed function names, causing an access violation during a call to FindIndex. The PoC demonstrates the vulnerability by crashing the service upon connection.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Windows (specific service not explicitly named, but likely related to a Windows service listening on port 10618)

No auth needed

Prerequisites: Network access to the target service on port 10618

MITRE ATT&CK