Vulnerabilities > CVE-2006-5780 - Stack Buffer Overflow vulnerability in Xlink Technology Omni-Nfs Server 5.2

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
xlink-technology
exploit available
metasploit
NVD
Published: 2006-11-07
Updated: 2018-10-17

Summary

Stack-based buffer overflow in nfsd.exe in XLink Omni-NFS Server 5.2 allows remote attackers to execute arbitrary code via a crafted TCP packet to port 2049 (nfsd), as demonstrated by vd_xlink.pm.

Vulnerable Configurations

Part Description Count
Application
Xlink_Technology
1

Exploit-Db

  • descriptionOmni-NFS Server Buffer Overflow. CVE-2006-5780. Remote exploit for windows platform
    idEDB-ID:16389
    last seen2016-02-01
    modified2010-11-11
    published2010-11-11
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/16389/
    titleOmni-NFS Server Buffer Overflow
  • descriptionOmni-NFS Server 5.2 (nfsd.exe) Remote Stack Overflow Exploit (meta). CVE-2006-5780. Remote exploit for windows platform
    fileexploits/windows/remote/2729.pm
    idEDB-ID:2729
    last seen2016-01-31
    modified2006-11-06
    platformwindows
    port2049
    published2006-11-06
    reporterEvgeny Legerov
    sourcehttps://www.exploit-db.com/download/2729/
    titleOmni-NFS Server 5.2 nfsd.exe Remote Stack Overflow Exploit meta
    typeremote

Metasploit

descriptionThis module exploits a stack buffer overflow in Xlink Omni-NFS Server 5.2 When sending a specially crafted nfs packet, an attacker may be able to execute arbitrary code.
idMSF:EXPLOIT/WINDOWS/NFS/XLINK_NFSD
last seen2019-12-17
modified2017-07-24
published2009-10-03
references
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/nfs/xlink_nfsd.rb
titleOmni-NFS Server Buffer Overflow

References