Vulnerability Details : CVE-2006-5780
Public exploit exists!
Stack-based buffer overflow in nfsd.exe in XLink Omni-NFS Server 5.2 allows remote attackers to execute arbitrary code via a crafted TCP packet to port 2049 (nfsd), as demonstrated by vd_xlink.pm.
Vulnerability category: OverflowExecute code
Products affected by CVE-2006-5780
- cpe:2.3:a:xlink_technology:omni-nfs_server:5.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-5780
74.43%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 98 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2006-5780
-
Omni-NFS Server Buffer Overflow
Disclosure Date: 2006-11-06First seen: 2020-04-26exploit/windows/nfs/xlink_nfsdThis module exploits a stack buffer overflow in Xlink Omni-NFS Server 5.2 When sending a specially crafted nfs packet, an attacker may be able to execute arbitrary code. Authors: - MC <mc@metasploit.com>
CVSS scores for CVE-2006-5780
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2006-5780
-
https://www.exploit-db.com/exploits/2729
-
http://www.securityfocus.com/bid/20941
Omni-NFS Server NFSD.EXE Stack Buffer Overflow VulnerabilityExploit
-
http://gleg.net/vulndisco_meta.shtml
404 Not FoundExploit;Vendor Advisory
-
http://www.securityfocus.com/archive/1/450728/100/0/threaded
-
http://securitytracker.com/id?1017172
-
http://www.vupen.com/english/advisories/2006/4380
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/30083
-
http://gleg.net/downloads/VULNDISCO_META_FREE.tar.gz
404 Not FoundExploit;Vendor Advisory
-
http://securityreason.com/securityalert/1831
VulnDisco Pack for Metasploit - CXSecurity.com
Jump to