CVE-2012-6530

Sysax Multi Server < 5.52 - Authenticated Stack-Based Buffer Overflow via HTTP Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2012-6530. PoCs published by Craig Freyman, Craig Freyman, Matt, Andreko, including Metasploit module exploits/windows/http/sysax_create_folder.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in Sysax Multi Server 5.50 via the create folder function, leading to remote code execution. It automates the SID gathering process and targets Windows XP SP3 and Server 2003 SP2.

Description

Stack-based buffer overflow in Sysax Multi Server before 5.52, when HTTP is enabled, allows remote authenticated users with the create folder permission to execute arbitrary code via a crafted request.

Exploits (3)

exploitdb WORKING POC
by Craig Freyman · rubyremotewindows
https://www.exploit-db.com/exploits/18420

This Metasploit module exploits a stack buffer overflow in Sysax Multi Server 5.50 via the create folder function, leading to remote code execution. It automates the SID gathering process and targets Windows XP SP3 and Server 2003 SP2.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Sysax Multi Server 5.50
Auth required
Prerequisites: Valid credentials with create folder permission · HTTP option enabled on the server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by Craig Freyman · pythonremotewindows
https://www.exploit-db.com/exploits/18382

This exploit targets a buffer overflow vulnerability in Sysax Multi Server 5.50 via a malformed HTTP POST request to the 'mk_folder2_name1.htm' endpoint. It includes shellcode for a bind shell on port 4444 and is tailored for Windows XP SP3 and Server 2003 SP2 without DEP.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Sysax Multi Server 5.50
Auth required
Prerequisites: Valid SID (40 bytes) · Network access to the target server · Target OS (XP SP3 or Server 2003 SP2 without DEP)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by Craig Freyman, Matt, Andreko · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/sysax_create_folder.rb

This Metasploit module exploits a stack buffer overflow in Sysax Multi Server 5.64 via the create folder function, achieving SYSTEM-level access on vulnerable Windows systems (XP SP3, Server 2003 SP1-SP2). It uses ROP chains for Windows 2003 targets and requires valid credentials.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Sysax Multi Server 5.64
Auth required
Prerequisites: Valid credentials with create folder permission · HTTP option enabled on Sysax
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18382
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18420
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/51548

Scores

EPSS 0.4607
EPSS Percentile 98.7%

Details

CWE
CWE-119
Status published
Products (3)
sysax/multi_server 4.3
sysax/multi_server 4.5
sysax/multi_server < 5.50
Published Jan 31, 2013
Tracked Since Feb 18, 2026