Vulnerabilities > CVE-2003-0471 - Unspecified vulnerability in Alt-N Webadmin
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Buffer overflow in WebAdmin.exe for WebAdmin allows remote attackers to execute arbitrary code via an HTTP request to WebAdmin.dll with a long USER argument.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Alt-N WebAdmin 2.0.x USER Parameter Buffer Overflow Vulnerability (2). CVE-2003-0471. Remote exploit for windows platform id EDB-ID:22834 last seen 2016-02-02 modified 2003-06-24 published 2003-06-24 reporter Mark Litchfield source https://www.exploit-db.com/download/22834/ title Alt-N WebAdmin 2.0.x USER Parameter Buffer Overflow Vulnerability 2 description WebAdmin <= 2.0.4 USER Buffer Overflow Exploit. CVE-2003-0471. Remote exploit for windows platform id EDB-ID:1210 last seen 2016-01-31 modified 2005-09-11 published 2005-09-11 reporter y0 source https://www.exploit-db.com/download/1210/ title WebAdmin <= 2.0.4 USER Buffer Overflow Exploit description Alt-N WebAdmin USER Buffer Overflow. CVE-2003-0471. Remote exploit for windows platform id EDB-ID:16776 last seen 2016-02-02 modified 2010-02-15 published 2010-02-15 reporter metasploit source https://www.exploit-db.com/download/16776/ title Alt-N WebAdmin USER Buffer Overflow description Alt-N WebAdmin 2.0.x USER Parameter Buffer Overflow Vulnerability (1). CVE-2003-0471. Remote exploit for windows platform id EDB-ID:22833 last seen 2016-02-02 modified 2003-06-24 published 2003-06-24 reporter Mark Litchfield source https://www.exploit-db.com/download/22833/ title Alt-N WebAdmin 2.0.x USER Parameter Buffer Overflow Vulnerability 1
Metasploit
description | Alt-N WebAdmin is prone to a buffer overflow condition. This is due to insufficient bounds checking on the USER parameter. Successful exploitation could result in code execution with SYSTEM level privileges. |
id | MSF:EXPLOIT/WINDOWS/HTTP/ALTN_WEBADMIN |
last seen | 2020-03-10 |
modified | 2017-07-24 |
published | 2006-01-16 |
references | |
reporter | Rapid7 |
source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/http/altn_webadmin.rb |
title | Alt-N WebAdmin USER Buffer Overflow |
Nessus
NASL family | CGI abuses |
NASL id | WEBADMIN.NASL |
description | webadmin.dll was found on the web server. Old versions of this CGI suffered from numerous problems: - installation path disclosure - directory traversal, allowing anybody with administrative permission on WebAdmin to read any file - buffer overflow, allowing anybody to run arbitrary code on the server with SYSTEM privileges. Note that no attack was performed, and the version number was not checked, so this might be a false alert |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11771 |
published | 2003-06-24 |
reporter | This script is Copyright (C) 2003-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/11771 |
title | Alt-N WebAdmin Multiple Vulnerabilities |
code |
|
Packetstorm
data source | https://packetstormsecurity.com/files/download/83099/altn_webadmin.rb.txt |
id | PACKETSTORM:83099 |
last seen | 2016-12-05 |
published | 2009-11-26 |
reporter | MC |
source | https://packetstormsecurity.com/files/83099/Alt-N-WebAdmin-USER-Buffer-Overflow.html |
title | Alt-N WebAdmin USER Buffer Overflow |
References
- http://marc.info/?l=bugtraq&m=105647081418155&w=2
- http://marc.info/?l=bugtraq&m=105647081418155&w=2
- http://marc.info/?l=bugtraq&m=105648385900792&w=2
- http://marc.info/?l=bugtraq&m=105648385900792&w=2
- http://www.osvdb.org/2207
- http://www.osvdb.org/2207
- http://www.securityfocus.com/bid/8024
- http://www.securityfocus.com/bid/8024