CVE-2004-2685
published 2004-12-31CVE-2004-2685: Buffer overflow in YoungZSoft CCProxy 6.2 and earlier allows remote attackers to execute arbitrary code via a long address in a ping (p) command to the Telnet…
PriorityP340high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
10.68%
95.3th percentile
Buffer overflow in YoungZSoft CCProxy 6.2 and earlier allows remote attackers to execute arbitrary code via a long address in a ping (p) command to the Telnet proxy service, a different vector than CVE-2004-2416.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| youngzsoft | ccproxy | <= 6.2 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
CCProxy 6.2 - Telnet Proxy Ping Overflow (Metasploit)
exploitdb·2007-09-03
CVE-2004-2685 CCProxy 6.2 - Telnet Proxy Ping Overflow (Metasploit)
CCProxy 6.2 - Telnet Proxy Ping Overflow (Metasploit)
---
##
# $Id: ccproxy_telnet_ping.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'CCProxy %q{
This module exploits the YoungZSoft CCProxy [ 'Patrick Webster ' ],
'Arch' => [ ARCH_X86 ],
'License' => MSF_LICENSE,
'Version' => '$Revision: 9179 $',
'References' =>
[
[ 'CVE', '2004-2416' ],
[ 'OSVDB', '11593' ],
[ 'BID', '11666 ' ],
[ 'URL', 'http://milw0rm.com/exploits/621' ],
],
'Privileged' => false,
'DefaultOptions' =>
{
'EXITFUNC' => 'thread',
},
'Pa
Exploit-DB
CCProxy 6.2 - 'ping' Remote Buffer Overflow
exploitdb·2004-11-10
CVE-2004-2685 CCProxy 6.2 - 'ping' Remote Buffer Overflow
CCProxy 6.2 - 'ping' Remote Buffer Overflow
---
######################################################################
## |------------------------------------------------------------| ##
## | CCProxy 6.2 ping Remote Buffer Overflow Exploit | ##
## | Based on Ruder's discovery,exploit by KaGra | ##
## | Binds Shellcode aT 101,use netcat to connect back... | ##
## | Tested in WinXP SP1 EnGlish | ##
## | Greedingz to:NinA,Coderz.gr and my musik BanD | ##
## |------------------------------------------------------------| ##
######################################################################
# Usage:exploit.py|nc Host port,where port is the telnet service of the target
# The buG exists when a long parameter is passed to ping command in telnet
# service of CCproxy server.This is a classic
No writeups or analysis indexed.
http://secunia.com/advisories/13085http://www.youngzsoft.net/ccproxy/whatsnew.htmhttps://www.exploit-db.com/exploits/4360https://www.exploit-db.com/exploits/621http://secunia.com/advisories/13085http://www.youngzsoft.net/ccproxy/whatsnew.htmhttps://www.exploit-db.com/exploits/4360https://www.exploit-db.com/exploits/621
2004-12-31
Published