CVE-2008-0550

Steamcast < 0.9.75 - Remote Code Execution via HTTP User-Agent Header

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-0550. PoCs published by Metasploit, including Metasploit module exploits/windows/http/steamcast_useragent.

AI-analyzed exploit summary This is a Metasploit module exploiting a stack buffer overflow in Streamcast <= 0.9.75 via an overly long HTTP User-Agent header. It includes a payload encoder and targets specific Windows versions for remote code execution.

Description

Off-by-one error in Steamcast 0.9.75 and earlier allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a certain HTTP request that leads to a buffer overflow, as demonstrated by a long User-Agent header.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16800

View Code ZIP pw:eip

This is a Metasploit module exploiting a stack buffer overflow in Streamcast <= 0.9.75 via an overly long HTTP User-Agent header. It includes a payload encoder and targets specific Windows versions for remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Streamcast <= 0.9.75

No auth needed

Prerequisites: Network access to the target on port 8000 · Vulnerable version of Streamcast running

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC NORMAL

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/steamcast_useragent.rb

View Code ZIP pw:eip

This Metasploit module exploits a stack buffer overflow in Streamcast <= 0.9.75 via an overly long HTTP User-Agent header, allowing arbitrary code execution. It includes a check method to verify the target and uses a structured payload with bad character avoidance.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Streamcast <= 0.9.75

No auth needed

Prerequisites: Network access to the target on port 8000 · Target running Streamcast <= 0.9.75

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit x_refsource_misc

http://aluigi.org/poc/steamcazz.zip

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/39928

Exploit x_refsource_misc

http://aluigi.altervista.org/adv/steamcazz-adv.txt

Scores

EPSS 0.5378

EPSS Percentile 98.9%

Details

CWE

CWE-189

Status published

Products (1)

radio_toolbox/steamcast < 0.9.75

Published Feb 01, 2008

Tracked Since Feb 18, 2026