Vulnerability Details CVE-2005-3992
Multiple buffer overflows in WinEggDropShell remote access trojan (RAT) 1.7 allow remote attackers to execute arbitrary code via (1) a long GET request to the HTTP server, or a long (2) USER or (3) PASS command to the FTP server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.105
EPSS Ranking 92.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0059.html
- http://securityreason.com/securityalert/226
- http://secway.org/advisory/AD20051202.txt
- http://www.securityfocus.com/archive/1/418398
- http://www.securityfocus.com/bid/15682
- http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0059.html
- http://securityreason.com/securityalert/226
- http://secway.org/advisory/AD20051202.txt
- http://www.securityfocus.com/archive/1/418398
- http://www.securityfocus.com/bid/15682
Products affected by CVE-2005-3992
-
cpe:2.3:a:wineggdropshell:wineggdropshell:1.7