CVE-2008-5297

No-IP DUC < 2.1.7 - Remote Code Execution via DNS Update Response Buffer Overflow

Title source: manual

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5297. PoCs published by XenoMuta.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the noip2-Linux client (CVE-2008-5297) by sending a maliciously crafted HTTP response to trigger remote code execution. It includes a reverse shell payload and supports multiple versions of the software.

Description

Buffer overflow in No-IP DUC 2.1.7 and earlier allows remote HTTP servers to execute arbitrary code via a crafted response to a DNS update request, related to a missing length check in the GetNextLine function.

Exploits (1)

exploitdb WORKING POC VERIFIED

by XenoMuta · cremotelinux

https://www.exploit-db.com/exploits/7151

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the noip2-Linux client (CVE-2008-5297) by sending a maliciously crafted HTTP response to trigger remote code execution. It includes a reverse shell payload and supports multiple versions of the software.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: noip2-Linux <= 2.1.7

No auth needed

Prerequisites: Network access to the target's noip2 client · Ability to intercept or spoof DNS responses

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (13)

Core 13

Core References

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2008/11/21/15

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/32344

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33610

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/4672

Issue Tracking x_refsource_confirm

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506179

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33138

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200901-12.xml

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/7151

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2008/dsa-1686

Exploit x_refsource_misc

http://xenomuta.tuxfamily.org/exploits/noIPwn3r.c

Various Sources x_refsource_confirm

http://git.debian.org/?p=collab-maint/no-ip.git%3Ba=commit%3Bh=60ed93621ff36d9731ba5d9f9336d6eb91122302

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/32761

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/46696

Scores

EPSS 0.1846

EPSS Percentile 96.9%

Details

CWE

CWE-119

Status published

Products (4)

vitalwerks/no-ip_duc 2.0.3

vitalwerks/no-ip_duc 2.1

vitalwerks/no-ip_duc 2.1.5

vitalwerks/no-ip_duc < 2.1.7

Published Dec 01, 2008

Tracked Since Feb 18, 2026