CVE-2008-3360

Exploitation Summary

EIP tracks 4 public exploits for CVE-2008-3360. PoCs published by kralor, r0ut3r, Guido Landi.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in IntelliTamper v2.07 and v2.08 Beta 4. It crafts a malicious HTML file with embedded shellcode to achieve remote code execution when the target opens the file.

Description

Stack-based buffer overflow in the HTML parser in IntelliTamper 2.0.7 allows remote attackers to execute arbitrary code via a long URL in the HREF attribute of an A element, a different vulnerability than CVE-2006-2494.

Exploits (4)

exploitdb WORKING POC VERIFIED

by kralor · cremotewindows

https://www.exploit-db.com/exploits/6238

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in IntelliTamper v2.07 and v2.08 Beta 4. It crafts a malicious HTML file with embedded shellcode to achieve remote code execution when the target opens the file.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: IntelliTamper v2.07 and v2.08 Beta 4

No auth needed

Prerequisites: Target must open the crafted HTML file

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by r0ut3r · cremotewindows

https://www.exploit-db.com/exploits/6121

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in IntelliTamper 2.0.7's HTML parser. It crafts a malicious HTML file containing shellcode and a manipulated EIP to achieve remote code execution (calc.exe).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: IntelliTamper 2.0.7

No auth needed

Prerequisites: Victim must open the crafted HTML file in IntelliTamper 2.0.7

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Guido Landi · perlremotewindows

https://www.exploit-db.com/exploits/6116

View Code ZIP pw:eip

This exploit leverages a buffer overflow vulnerability in the target software by embedding shellcode within an HTML file. The shellcode is designed to execute arbitrary commands, and the exploit constructs a malicious URL to trigger the overflow.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Unknown (likely a web browser or related component vulnerable to buffer overflow via URL handling)

No auth needed

Prerequisites: Victim must open the malicious HTML file or visit the crafted URL

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Guido Landi · perldoswindows

https://www.exploit-db.com/exploits/6103

View Code ZIP pw:eip

This exploit generates a maliciously crafted HTML file designed to trigger a buffer overflow in IntelliTamper's HTML parser. The payload consists of a long string of 'A' characters followed by 'B' characters to overwrite EIP, indicating a classic stack-based overflow.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: IntelliTamper (version unspecified)

No auth needed

Prerequisites: A web server to host the malicious HTML file · Victim must use IntelliTamper to parse the file

MITRE ATT&CK