Posted by malvuln on Jan 19

Discovery / credits: malvuln – (c) 2021
Original source:
Contact: malvuln13 () gmail com

Threat: Backdoor.Win32.Kurbadur.a
Vulnerability: Remote Stack Buffer Overflow
Description: The malware listens on TCP port 21220, by sending
incrementing HTTP TRACE requests with an increasing payload size, we
trigger buffer overflow overwriting EIP.
Read More – Full Disclosure

By |2021-01-19T18:24:37-05:00January 19th, 2021|