CVE-2009-4873

Rhino Software Serv-U Web Client 9.0.0.5 - Stack-Based Buffer Overflow via Long Session Cookie

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2009-4873. PoCs published by Megumi Yanagishita, Nikolas Rangos.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in a web server via a maliciously crafted HTTP POST request with a long 'Session' cookie. It includes DEP bypass techniques and a placeholder for shellcode, designed for Windows Server 2003 R2 SP2.

Description

Stack-based buffer overflow in the HTTP server in Rhino Software Serv-U Web Client 9.0.0.5 allows remote attackers to cause a denial of service (server crash) or execute arbitrary code via a long Session cookie.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Megumi Yanagishita · c++remotewindows
https://www.exploit-db.com/exploits/9800

This exploit targets a buffer overflow vulnerability in a web server via a maliciously crafted HTTP POST request with a long 'Session' cookie. It includes DEP bypass techniques and a placeholder for shellcode, designed for Windows Server 2003 R2 SP2.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Unknown web server (likely a specific application using vulnerable cookie handling)
No auth needed
Prerequisites: Network access to the target server · Vulnerable web application with exposed HTTP endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Nikolas Rangos · textremotewindows
https://www.exploit-db.com/exploits/9966

This exploit demonstrates a buffer overflow in RhinoSoft Serv-U 9.0.0.5 WebClient by sending an overly long Session Cookie via HTTP POST request, overwriting EIP with 0xAAAAAAAA and crashing the service.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: RhinoSoft Serv-U 9.0.0.5 WebClient
No auth needed
Prerequisites: Network access to the target's HTTP service (port 80)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit x_refsource_misc
http://www.rangos.de/ServU-ADV.txt
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/3116
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/36895
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37228

Scores

EPSS 0.6024
EPSS Percentile 98.3%

Details

CWE
CWE-119
Status published
Products (1)
rhinosoft/serv-u 9.0.0.5
Published May 26, 2010
Tracked Since Feb 18, 2026