CVE-2005-3992

Name of the Vulnerable Software and Affected Versions WinEggDropShell remote access trojan (RAT) version 1.7

Description The issue allows remote attackers to execute arbitrary code due to multiple buffer overflows. This can be achieved via a long GET request to the "HTTP server" endpoint, or a long USER or PASS command to the "FTP server" endpoint.

Recommendations For WinEggDropShell remote access trojan (RAT) version 1.7, consider disabling the HTTP server and FTP server until a patch is available to prevent exploitation. Restrict access to the USER and PASS commands in the FTP server to minimize the risk of arbitrary code execution. At the moment, there is no information about a newer version that contains a fix for this issue.