CVE-2010-0103

Energizer DUO USB - Remote Code Execution via TCP Port 7777

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2010-0103. PoCs published by Metasploit, hdm, including Metasploit module auxiliary/scanner/backdoor/energizer_duo_detect.

AI-analyzed exploit summary This Metasploit module exploits a backdoor in the Energizer DUO USB battery charger software to upload and execute arbitrary payloads on infected systems. It communicates with the trojan on port 7777, using encoded commands to write and execute a malicious executable.

Description

UsbCharger.dll in the Energizer DUO USB battery charger software contains a backdoor that is implemented through the Arucer.dll file in the %WINDIR%\system32 directory, which allows remote attackers to download arbitrary programs onto a Windows PC, and execute these programs, via a request to TCP port 7777.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16390

This Metasploit module exploits a backdoor in the Energizer DUO USB battery charger software to upload and execute arbitrary payloads on infected systems. It communicates with the trojan on port 7777, using encoded commands to write and execute a malicious executable.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Energizer DUO USB battery charger software (with Arugizer trojan)
No auth needed
Prerequisites: Target system must be infected with the Arugizer trojan · Network access to the trojan's listener on port 7777
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit SCANNER
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/backdoor/energizer_duo_detect.rb

This Metasploit auxiliary module scans for instances of the Energizer DUO trojan horse software by sending encoded commands to port 7777 and parsing responses to detect compromised systems. It does not exploit a vulnerability but identifies trojaned installations.

Classification
Scanner 100%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: Energizer DUO USB Battery Charger Software (trojaned Arucer.dll)
No auth needed
Prerequisites: Network access to port 7777 on target systems
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by hdm · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/backdoor/energizer_duo_payload.rb

This Metasploit module exploits a backdoor in the Energizer DUO USB battery charger software (Arucer.dll) to achieve remote code execution. It communicates with the trojan on port 7777, uploads a malicious executable, and executes it.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Energizer DUO USB Battery Charger Software (Arucer.dll)
No auth needed
Prerequisites: Target system must be infected with the Arugizer trojan · Network access to port 7777 on the target
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/38571
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/154421

Scores

EPSS 0.2734
EPSS Percentile 97.8%

Details

CWE
CWE-94
Status published
Products (1)
energizer/duo_usb
Published Mar 10, 2010
Tracked Since Feb 18, 2026