CVE-2008-0127

McAfee E-Business Server <= 8.5.2 - Remote Code Execution via Long Authentication Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0127. PoCs published by Leon Juranic.

AI-analyzed exploit summary This exploit sends a malformed packet to McAfee E-Business Server 8.5.2 on port 1718, causing a remote pre-authentication crash. The payload consists of a static header followed by a large buffer of 'A' characters to trigger the vulnerability.

Description

The administration interface in McAfee E-Business Server 8.5.2 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Leon Juranic · perldosmultiple

https://www.exploit-db.com/exploits/4878

View Code ZIP pw:eip

This exploit sends a malformed packet to McAfee E-Business Server 8.5.2 on port 1718, causing a remote pre-authentication crash. The payload consists of a static header followed by a large buffer of 'A' characters to trigger the vulnerability.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: McAfee E-Business Server 8.5.2

No auth needed

Prerequisites: Network access to the target server on port 1718

MITRE ATT&CK