Backdoor.Win32.NinjaSpy.c Remote...

- AV AC AU C I A
发布: 2021-01-08
修订: 2024-12-11

Backdoor.Win32.NinjaSpy.c suffers from a remote stack buffer overflow vulnerability. The specimen drops a DLL named "cmd.dll" under C:\WINDOWS\ which listens on both TCP ports 2003 and 2004. By sending consecutive HTTP PUT requests with large payloads of characters, we can cause buffer overflow.

0%

漏洞利用/PoC

当前有1条漏洞利用/PoC

受影响的平台与产品

当前有0条受影响产品信息