Published: 31/12/2003 Updated: 11/10/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in eZnet.exe, as used in eZ (a) eZphotoshare, (b) eZmeeting, (c) eZnetwork, and (d) eZshare allows remote malicious users to cause a denial of service (crash) or execute arbitrary code, as demonstrated via (1) a long GET request and (2) a long operation or autologin parameter to SwEzModule.dll.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ezmeeting ezmeeting 3.3
ezmeeting ezmeeting 3.4
ezmeeting ezmeeting 3.5

#!/usr/bin/perl -w #########C###O###R###O###M###P###U###T###E###R########### # [Crpt] universal eZ v33 < v35 remote exploit by kralor [Crpt] # #----------------------------------------------------------------------------------------# # versions tested & not vulnerables: v30 v31 v32 # # versions tested & vulner ...

#!/usr/bin/perl -w # # Stack Overflow in eZnetexe - Remote Exploit # # Will download a trojan from any address which you provide # on the target system, then will execute the trojan # # For this exploit I have tried several strategies to increase # reliability and performance: # # + Jump to a static 'call esp' # + Backwards jump to code a kno ...

CWE-119 http://marc.info/?l=bugtraq&m=107090390002654&w=2 http://seclists.org/bugtraq/2003/Dec/0195.html http://www.governmentsecurity.org/archive/t5390.html http://securitytracker.com/id?1008412 https://www.exploit-db.com/exploits/133 https://nvd.nist.gov https://www.exploit-db.com/exploits/136/

CVE-2003-1339

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect