CVE-2008-5177

Yosemite Backup 8.7 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5177. PoCs published by Abdul-Aziz Hariri.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Yosemite Backup 8.70, allowing remote code execution on Linux systems and denial of service on Windows systems. It sends a crafted payload to trigger the overflow and includes shellcode for a bind shell on port 4444.

Description

Stack-based buffer overflow in the DtbClsLogin function in Yosemite Backup 8.7 allows remote attackers to (1) execute arbitrary code on a Linux platform, related to libytlindtb.so; or (2) cause a denial of service (application crash) and possibly execute arbitrary code on a Windows platform, related to ytwindtb.dll; via a long username field during authentication.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Abdul-Aziz Hariri · pythonremotewindows

https://www.exploit-db.com/exploits/32578

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Yosemite Backup 8.70, allowing remote code execution on Linux systems and denial of service on Windows systems. It sends a crafted payload to trigger the overflow and includes shellcode for a bind shell on port 4444.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Yosemite Backup 8.70

No auth needed

Prerequisites: Network access to the target system · Yosemite Backup service running on port 3817

MITRE ATT&CK