CVE-2007-2059

eIQnetworks Enterprise Security Analyzer 2.5 - Remote Code Execution via Long Parameter to ESA Protocol Command

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2059. PoCs published by Leon Juranic.

AI-analyzed exploit summary The provided text describes multiple buffer overflow vulnerabilities in eIQnetworks Enterprise Security Analyzer 2.5, detailing specific attack vectors and payload structures. It does not contain executable exploit code but outlines the technical basis for potential remote code execution (RCE) or denial-of-service (DoS) attacks.

Description

Multiple buffer overflows in the ESA protocol implementation in eIQnetworks Enterprise Security Analyzer (ESA) 2.5 allow remote attackers to execute arbitrary code via a long parameter to the (1) DELETESEARCHFOLDER, (2) DELTASK, (3) HMGR_CHECKHOSTSCSV, (4) TASKUPDATEDUSER, (5) VERIFYUSERKEY, or (6) VERIFYPWD command.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Leon Juranic · textdoswindows

https://www.exploit-db.com/exploits/29850

View Code ZIP pw:eip

The provided text describes multiple buffer overflow vulnerabilities in eIQnetworks Enterprise Security Analyzer 2.5, detailing specific attack vectors and payload structures. It does not contain executable exploit code but outlines the technical basis for potential remote code execution (RCE) or denial-of-service (DoS) attacks.

Classification

Writeup 90%

Attack Type

Rce | Dos

Complexity

Moderate

Reliability

Theoretical

Target: eIQnetworks Enterprise Security Analyzer 2.5

No auth needed

Prerequisites: Network access to the target application · Ability to send crafted HTTP requests

MITRE ATT&CK