CVE-2007-1465

dproxy 0.1-0.5 - Remote Code Execution via Long DNS Query Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1465. PoCs published by Alexander Klink.

AI-analyzed exploit summary This is a Metasploit module exploiting a buffer overflow in dproxy versions 0.1 to 0.5 via a maliciously crafted UDP packet. It targets Linux systems and delivers a payload to achieve remote code execution.

Description

Stack-based buffer overflow in dproxy.c for dproxy 0.1 through 0.5 allows remote attackers to execute arbitrary code via a long DNS query packet to UDP port 53.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Alexander Klink · remotelinux

https://www.exploit-db.com/exploits/3554

View Code ZIP pw:eip

This is a Metasploit module exploiting a buffer overflow in dproxy versions 0.1 to 0.5 via a maliciously crafted UDP packet. It targets Linux systems and delivers a payload to achieve remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: dproxy v0.1 - v0.5

No auth needed

Prerequisites: Network access to the target's UDP port 53 · Target running vulnerable dproxy version

MITRE ATT&CK