CVE-2001-1163
published 2001-06-16CVE-2001-1163: Buffer overflow in Munica Corporation NetSQL 1.0 allows remote attackers to execute arbitrary code via a long CONNECT argument to port 6500.
PriorityP340critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
11.20%
95.4th percentile
Buffer overflow in Munica Corporation NetSQL 1.0 allows remote attackers to execute arbitrary code via a long CONNECT argument to port 6500.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| munica | netsql | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Yager 5.24 - Remote Buffer Overflow
exploitdb·2005-04-25
CVE-2005-1163 Yager 5.24 - Remote Buffer Overflow
Yager 5.24 - Remote Buffer Overflow
---
/*
*
* Yager > 1
* --[ sending handshake [UDP]...done!
* --[ reading server response [UDP]...done!
* --[ server port: 1089
* --[ connecting to 192.168.2.100:1089 [TCP]...done!
* --[ exploiting WinXP Pro SP1 GER
* --[ ret: 0x300686bd [ jmp esp in binkw32.dll ]
* --[ exploiting packet overflow...
* --[ sending packet...done!
* --[ starting reverse handler [port: 1337]...done!
* --[ incomming connection from: 192.168.2.100
* --[ b0x pwned - h4ve phun
* Microsoft Windows XP [Version 5.1.2600]
* (C) Copyright 1985-2001 Microsoft Corp.
*
* C:\Yager>
*
*/
#include
#include
#include
#include
#define PORT_UDP 34855
#define RED "\E[31m\E[1m"
#define GREEN "\E[32m\E[1m"
#define YELLOW "\E[33m\E[1m"
#define BLUE "\E[34m\E[1m"
#define NORMAL "\E[m"
/*
*
*
Exploit-DB
NetSQL 1.0 - Remote Buffer Overflow
exploitdb·2001-06-15
CVE-2001-1163 NetSQL 1.0 - Remote Buffer Overflow
NetSQL 1.0 - Remote Buffer Overflow
---
// source: https://www.securityfocus.com/bid/2885/info
NetSQL is an implementation of a database and toolset distributed by Munica Corporation. NetSQL is part of 5 piece software package called the Webpak, containing utilities for features such as web boards, membership, and online calendars.
A buffer overflow in the server makes it possible for a remote user to gain remote root access to a system using the affected software. By sending a long string to port 6500, a remote user can create a buffer overflow, allowing code execution.
This makes it possible for a remote user to gain remote root access, resulting in complete compromise of a system using the affected software.
/* PRIVATE EXPLOIT, DONT DISTRO%$##$%$#
* Remote exploit for NetSQL serve
No writeups or analysis indexed.
2001-06-16
Published