CVE-2007-2783

Rational Soft Hidden Administrator <1.7 - Auth Bypass/Code Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2783. PoCs published by Ahmed Siddiqui.

AI-analyzed exploit summary This exploit bypasses authentication in Hidden Administrator software by sending a crafted buffer to trigger a directory traversal vulnerability, then downloads and executes a reverse shell payload via TFTP. It establishes a connection to a listener on port 4444.

Description

Unspecified vulnerability in Rational Soft Hidden Administrator 1.7 and earlier allows remote attackers to bypass authentication and execute arbitrary code via unspecified vectors. NOTE: this issue has no actionable information, and perhaps should not be included in CVE.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ahmed Siddiqui · pythonremotewindows

https://www.exploit-db.com/exploits/3954

View Code ZIP pw:eip

This exploit bypasses authentication in Hidden Administrator software by sending a crafted buffer to trigger a directory traversal vulnerability, then downloads and executes a reverse shell payload via TFTP. It establishes a connection to a listener on port 4444.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Hidden Administrator (version unspecified)

No auth needed

Prerequisites: TFTP server with nc.exe · network connectivity to target · listener on port 4444

MITRE ATT&CK