CVE-2007-2079

XAMPP < 1.6.0a - Remote Code Execution via ADONewConnection Host Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2079. PoCs published by rgod.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in XAMPP for Windows <= 1.6.0a via the adodb.php script, specifically in the mssql_connect() function. It leverages SEH overwrite to execute arbitrary commands by sending a maliciously crafted POST request.

Description

The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server hostname, which allows remote attackers to trigger a library buffer overflow and execute arbitrary code via a long host parameter, or have other unspecified impact. NOTE: it could be argued that this is an issue in mssql_connect (CVE-2007-1411.1) in PHP, or an issue in the ADOdb Library, and the proper fix should be in one of these products; if so, then this should not be treated as a vulnerability in XAMPP.

Exploits (1)

exploitdb WORKING POC VERIFIED
by rgod · phpremotewindows
https://www.exploit-db.com/exploits/3738

This exploit targets a buffer overflow vulnerability in XAMPP for Windows <= 1.6.0a via the adodb.php script, specifically in the mssql_connect() function. It leverages SEH overwrite to execute arbitrary commands by sending a maliciously crafted POST request.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: XAMPP for Windows <= 1.6.0a
No auth needed
Prerequisites: Target must have XAMPP for Windows <= 1.6.0a with mssql extension enabled · Network access to the target server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/33683
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/41594
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3738
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23491

Scores

EPSS 0.0969
EPSS Percentile 94.9%

Details

Status published
Products (1)
xampp/apache_distribution < 1.6.0a
Published Apr 18, 2007
Tracked Since Feb 18, 2026