CVE-2008-1491

ASUS Remote Console <2.0.0.19,2.0.0.24 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2008-1491. PoCs published by Metasploit, Heretic2, including Metasploit module exploits/windows/misc/asus_dpcproxy_overflow.

AI-analyzed exploit summary This exploit targets a stack buffer overflow in Asus Dpcroxy version 2.0.0.19 (up to 2.0.0.24) via TCP port 623. It leverages a crafted payload with NOP sleds, shellcode, and a return address to achieve remote code execution.

Description

Stack-based buffer overflow in the DPC Proxy server (DpcProxy.exe) in ASUS Remote Console (aka ARC or ASMB3) 2.0.0.19 and 2.0.0.24 allows remote attackers to execute arbitrary code via a long string to TCP port 623.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16425

This exploit targets a stack buffer overflow in Asus Dpcroxy version 2.0.0.19 (up to 2.0.0.24) via TCP port 623. It leverages a crafted payload with NOP sleds, shellcode, and a return address to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Asus Dpcroxy version 2.0.0.19
No auth needed
Prerequisites: Network access to TCP port 623 · Vulnerable version of Asus Dpcroxy
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Heretic2 · c++remotewindows
https://www.exploit-db.com/exploits/5694

This exploit targets a buffer overflow vulnerability in ASUS DPC Proxy versions 2.0.0.16 and 2.0.0.19. It uses a SEH-based exploitation technique with alphanumeric shellcode to achieve remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ASUS DPC Proxy 2.0.0.16/2.0.0.19
No auth needed
Prerequisites: Network access to the vulnerable ASUS DPC Proxy service
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/asus_dpcproxy_overflow.rb

This Metasploit module exploits a stack buffer overflow in Asus Dpcproxy version 2.0.0.19 by sending a crafted payload to TCP port 623, achieving remote code execution. The exploit leverages a return address overwrite and includes NOP sleds and shellcode to execute arbitrary commands.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Asus Dpcproxy version 2.0.0.19 (and likely up to 2.0.0.24)
No auth needed
Prerequisites: Network access to TCP port 623 on the target system
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41358
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/5694
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3771
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/28394
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29402
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0982/references
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/489966/100/0/threaded

Scores

EPSS 0.8872
EPSS Percentile 99.5%

Details

CWE
CWE-119
Status published
Products (2)
asus/remote_console 2.0.0.19
asus/remote_console 2.0.0.24
Published Mar 25, 2008
Tracked Since Feb 18, 2026