CVE-2005-3992
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2005-3992
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple buffer overflows in WinEggDropShell remote access trojan (RAT) 1.7 allow remote attackers to execute arbitrary code via (1) a long GET request to the HTTP server, or a long (2) USER or (3) PASS command to the FTP server.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
WinEggDropShell多个远程缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WinEggDropShell是一款流行的支持中文的telnet类型后门程序。 WinEggDropShell中存在多个远程溢出漏洞,远程攻击者可能利用漏洞在安装了此后门的服务器上执行任意指令。 主要漏洞如下: 1. FTP USER溢出 .text:100027BD push offset aUser ; "USER" .text:100027C2 call _strlen .text:100027C7 add esp, 4 .text:100027CA lea edi, [ebp+eax-103h]
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2005-3992
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2005-3992
请登录查看更多情报信息。
- http://secway.org/advisory/AD20051202.txtx_refsource_MISC
- http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0059.htmlmailing-listx_refsource_FULLDISC
- https://nvd.nist.gov/vuln/detail/CVE-2005-3992
Same Patch Batch · n/a · 2005-12-04 · 55 CVEs total
| CVE-2004-2639 | Journalness帖子创建修改漏洞 | |
| CVE-2005-3989 | Avaya TN2602AP IP Media Resource 320 远程拒绝服务漏洞 | |
| CVE-2004-2649 | Qualcomm Eudora Embedded Hyperlink URI模糊漏洞 | |
| CVE-2005-3987 | Tradesoft CMS多个SQL注入漏洞 | |
| CVE-2005-3986 | Instant Photo Gallery多个SQL注入漏洞 | |
| CVE-2005-3985 | Astaro Security Linux ISAKMP IKE Traffic 拒绝服务漏洞 | |
| CVE-2005-3988 | Lore Article.PHP SQL注入漏洞 | |
| CVE-2004-2642 | Nathaniel Bray Yeemp文件Transfer公钥认证绕过漏洞 | |
| CVE-2004-2641 | Sun Fire/Netra单TOS选项IP包远程拒绝服务漏洞 | |
| CVE-2004-2640 | LinuxStat远程目录遍历漏洞 | |
| CVE-2004-2643 | 微软CABARC目录遍历漏洞 | |
| CVE-2004-2638 | Admin Access With Levels Plug-in For osCommerce访问控制绕过漏洞 | |
| CVE-2004-2637 | Zonet无线路由器NAT实现设计缺陷漏洞 | |
| CVE-2004-2636 | Rit Research Labs TinyWeb Server未授权脚本泄露漏洞 | |
| CVE-2004-2635 | McAfee Security Installer Control System ActiveX信息披露漏洞 | |
| CVE-2004-2634 | IBM AIX Console命令多个符号链接漏洞 | |
| CVE-2004-2633 | Sesame未授权库访问漏洞 | |
| CVE-2004-2632 | phpMyAdmin多个输入验证漏洞 | |
| CVE-2004-2631 | phpMyAdmin多个输入验证漏洞 | |
| CVE-2004-2630 | phpMyAdmin远程命令执行漏洞 |
Showing top 20 of 55 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2005-3992
No comments yet