CVE-2007-3086

Agnitum Outpost Firewall PRO 4.0 1007.591.145 and earlier - Denial of Service via outpost_ipc_hdr Mutex Capture

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3086. PoCs published by Matousec Transparent security.

AI-analyzed exploit summary This exploit captures the 'outpost_ipc_hdr' mutex in Outpost Firewall, causing a deadlock when a child process is spawned, resulting in a local denial-of-service (DoS). It demonstrates the vulnerability by opening a command shell, which blocks the system.

Description

Unrestricted critical resource lock in Agnitum Outpost Firewall PRO 4.0 1007.591.145 and earlier allows local users to cause a denial of service (system hang) by capturing the outpost_ipc_hdr mutex.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Matousec Transparent security · cdosmultiple

https://www.exploit-db.com/exploits/30139

View Code ZIP pw:eip

This exploit captures the 'outpost_ipc_hdr' mutex in Outpost Firewall, causing a deadlock when a child process is spawned, resulting in a local denial-of-service (DoS). It demonstrates the vulnerability by opening a command shell, which blocks the system.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Outpost Firewall 4.0 (builds 1007.591.145 and 964.582.059)

No auth needed

Prerequisites: Local access to the target system · Outpost Firewall running with vulnerable version

MITRE ATT&CK