CVE-2011-5033

ConfigServer Security & Firewall < 5.43 - Stack-Based Buffer Overflow via Admin List File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-5033. PoCs published by FoX HaCkEr.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in CSF Firewall due to unsafe use of fgets() into a fixed-size buffer. The PoC triggers a segmentation fault by overflowing the buffer with a long string, overwriting the EIP register.

Description

Stack-based buffer overflow in CFS.c in ConfigServer Security & Firewall (CSF) before 5.43, when running on a DirectAdmin server, allows local users to cause a denial of service (crash) via a long string in an admin.list file.

Exploits (1)

exploitdb WORKING POC
by FoX HaCkEr · cdoslinux
https://www.exploit-db.com/exploits/18225

This exploit demonstrates a buffer overflow vulnerability in CSF Firewall due to unsafe use of fgets() into a fixed-size buffer. The PoC triggers a segmentation fault by overflowing the buffer with a long string, overwriting the EIP register.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: CSF Firewall (ConfigServer Security & Firewall)
No auth needed
Prerequisites: Access to execute the binary with a maliciously crafted argument
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Various Sources x_refsource_confirm
http://www.configserver.com/free/csf/changelog.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/71758
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18225
Various Sources x_refsource_confirm
http://forum.configserver.com/viewtopic.php?f=4&t=5008

Scores

EPSS 0.0074
EPSS Percentile 49.7%

Details

CWE
CWE-119
Status published
Products (36)
configserver/configserver_security_firewall 5.00
configserver/configserver_security_firewall 5.01
configserver/configserver_security_firewall 5.02
configserver/configserver_security_firewall 5.03
configserver/configserver_security_firewall 5.04
configserver/configserver_security_firewall 5.05
configserver/configserver_security_firewall 5.06
configserver/configserver_security_firewall 5.07
configserver/configserver_security_firewall 5.08
configserver/configserver_security_firewall 5.09
... and 26 more
Published Dec 29, 2011
Tracked Since Feb 18, 2026