Vulnerabilities > CVE-2006-5112 - Remote Buffer Overflow vulnerability in Intervations Navicopa web Server 2.01

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
intervations
exploit available
metasploit

Summary

Buffer overflow in InterVations NaviCOPA Web Server 2.01 allows remote attackers to execute arbitrary code via a long HTTP GET request.

Vulnerable Configurations

Part Description Count
Application
Intervations
1

Exploit-Db

  • descriptionNaviCOPA Web Server 2.01 (GET) Remote Buffer Overflow Exploit. CVE-2006-5112. Remote exploit for windows platform
    fileexploits/windows/remote/2445.c
    idEDB-ID:2445
    last seen2016-01-31
    modified2006-09-27
    platformwindows
    port80
    published2006-09-27
    reporterh07
    sourcehttps://www.exploit-db.com/download/2445/
    titleNaviCOPA Web Server 2.01 GET Remote Buffer Overflow Exploit
    typeremote
  • descriptionNaviCOPA 2.0.1 URL Handling Buffer Overflow. CVE-2006-5112. Remote exploit for windows platform
    idEDB-ID:16808
    last seen2016-02-02
    modified2010-07-12
    published2010-07-12
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/16808/
    titleNaviCOPA 2.0.1 URL Handling Buffer Overflow

Metasploit

descriptionThis module exploits a stack buffer overflow in NaviCOPA 2.0.1. The vulnerability is caused due to a boundary error within the handling of URL parameters.
idMSF:EXPLOIT/WINDOWS/HTTP/NAVICOPA_GET_OVERFLOW
last seen2020-06-12
modified2017-07-24
published2006-11-12
referenceshttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5112
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/http/navicopa_get_overflow.rb
titleNaviCOPA 2.0.1 URL Handling Buffer Overflow

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/83095/navicopa_get_overflow.rb.txt
idPACKETSTORM:83095
last seen2016-12-05
published2009-11-26
reporterMC
sourcehttps://packetstormsecurity.com/files/83095/NaviCOPA-2.0.1-URL-Handling-Buffer-Overflow.html
titleNaviCOPA 2.0.1 URL Handling Buffer Overflow