CVE-2009-1647
Ultrafunk Popcorn 1.87 - Heap-Based Buffer Overflow via Long POP3 Response
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2009-1647. PoCs published by x.CJP.x.
AI-analyzed exploit summary This exploit triggers a buffer overflow in UltraFunk Popcorn POP3 server by sending an oversized response to a client connection. The PoC binds to port 110 and waits for a connection before sending a 6000-byte buffer, causing a crash.
Description
Heap-based buffer overflow in popcorn.exe in Ultrafunk Popcorn 1.87 allows remote POP3 servers to cause a denial of service (application crash) via a long string in a +OK response. NOTE: some of these details are obtained from third party information.
Exploits (1)
This exploit triggers a buffer overflow in UltraFunk Popcorn POP3 server by sending an oversized response to a client connection. The PoC binds to port 110 and waits for a connection before sending a 6000-byte buffer, causing a crash.