vendor:
by:
Inphex
7.5
CVSS
HIGH
Windows Command Shell Bind TCP Inline
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows XP
Inphex
This exploit allows an attacker to bind a TCP shell to a specific port on a Windows system. The exploit targets the shell32.dll library and is specifically designed for Windows XP.
Mitigation:
Ensure that the snmp extension is not loaded or restrict access to the vulnerable functionality.