vendor:
by:
Francis Provencher
7.5
CVSS
HIGH
Buffer Overflow
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows XPSP3 English
Fake SMTP Server Exploit
This script sets up a fake SMTP server which allows an attacker to exploit a buffer overflow vulnerability. The script contains an egghunter and a bind shell payload.
Mitigation:
Apply patches or updates from the vendor.