Vulnerability & Exploit Database

Back to search

EZHomeTech EzServer Stack Buffer Overflow Vulnerability

This module exploits a stack buffer overflow in the EZHomeTech EZServer for versions 6.4.017 and earlier. If a malicious user sends packets containing an overly long string, it may be possible to execute a payload remotely. Due to size constraints, this module uses the Egghunter technique.

Free Metasploit Download

Get your copy of the world's leading penetration testing tool

 Download Now

Module Name

exploit/windows/http/ezserver_http

Authors

  • modpr0be <modpr0be [at] spentera.com>

References

Targets

  • EzHomeTech EzServer <= 6.4.017 (Windows XP Universal)

Platforms

  • windows

Reliability

Development

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use exploit/windows/http/ezserver_http msf exploit(ezserver_http) > show targets ...targets... msf exploit(ezserver_http) > set TARGET <target-id> msf exploit(ezserver_http) > show options ...show and set options... msf exploit(ezserver_http) > exploit