CVE-2017-8893

HIGH

AeroAdmin 4.1 - Denial of Service via Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-8893. PoCs published by X-C3LL.

AI-analyzed exploit summary This PoC exploits a heap-based buffer overflow in AeroAdmin 4.1 by sending a maliciously crafted packet with a manipulated size value (0x1337) to trigger a crash via a `rep movsb` operation. The code demonstrates the vulnerability by connecting to the target and sending the exploit packet.

Description

AeroAdmin 4.1 uses a function to copy data between two pointers where the size of the data copied is taken directly from a network packet. This can cause a buffer overflow and denial of service.

Exploits (1)

github WORKING POC 11 stars

by X-C3LL · pythonpoc

https://github.com/X-C3LL/PoC-CVEs/tree/master/CVE-2017-8893

View Code ZIP pw:eip

This PoC exploits a heap-based buffer overflow in AeroAdmin 4.1 by sending a maliciously crafted packet with a manipulated size value (0x1337) to trigger a crash via a `rep movsb` operation. The code demonstrates the vulnerability by connecting to the target and sending the exploit packet.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: AeroAdmin 4.1

No auth needed

Prerequisites: network access to target · AeroAdmin service running on port 5950

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://www.tarlogic.com/advisories/Tarlogic-2017-001.txt

Scores

CVSS v3 7.5

EPSS 0.0108

EPSS Percentile 60.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-119

Status published

Products (1)

aeroadmin/aeroadmin 4.1

Published Jul 02, 2017

Tracked Since Feb 18, 2026