CVE-2018-19862
Description
Buffer overflow in MiniShare 1.4.1 and earlier allows remote code execution via a long HTTP POST request; product is discontinued.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Buffer overflow in MiniShare 1.4.1 and earlier allows remote code execution via a long HTTP POST request; product is discontinued.
Vulnerability
Buffer overflow in MiniShare 1.4.1 and earlier (discontinued) in handling HTTP POST requests. The vulnerability exists in the HTTP server component, triggered by a long POST request. Affected versions: MiniShare 1.4.1 and earlier. [1]
Exploitation
An unauthenticated remote attacker can send a crafted HTTP POST request with a long payload. The exploit requires no authentication. The overflow occurs when processing the request, with 210 bytes available for shellcode. Bad characters are 0x00 and 0x0d. The attacker can use a jump to ESP (e.g., call esp at 0x7C809F83 on Windows XP SP3 English) to redirect execution to shellcode. [1]
Impact
Successful exploitation allows arbitrary code execution with the privileges of the MiniShare process. The attacker gains full control over the affected system. [1]
Mitigation
No patch is available as MiniShare is discontinued. Users should discontinue use of the software and migrate to an alternative. [1]
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"Missing bounds checking on HTTP POST request length leads to a stack-based buffer overflow."
Attack vector
An unauthenticated remote attacker sends a crafted HTTP POST request with an overly long payload to the MiniShare server on port 80. The oversized input overflows a stack buffer, overwriting the saved return address and enabling arbitrary code execution. The exploit uses a 1786-byte junk prefix, a return address that jumps to ESP, and an egghunter to locate the final shellcode placed in the Host header [ref_id=1].
Affected code
The advisory does not specify a particular function or file path; the product is MiniShare 1.4.1 and earlier, which is discontinued. The vulnerability is triggered via the HTTP POST request handler that fails to bounds-check input length.
What the fix does
No patch is available; the vendor has discontinued the product and the advisory states "This product is deprecated" as the only solution [ref_id=1]. Users are advised to discontinue use of MiniShare and migrate to an alternative HTTP file-sharing server that properly validates input lengths.
Preconditions
- configMiniShare 1.4.1 or earlier must be running and listening on a network interface
- networkAttacker must be able to send TCP traffic to the MiniShare server (typically port 80)
- authNo authentication is required; the service accepts connections from any remote host
Reproduction
The public exploit at https://www.exploit-db.com/exploits/45999/ [ref_id=1] provides a Python script that connects to the target on port 80 and sends a crafted HEAD request with a 1786-byte junk buffer, a return address overwrite, NOP sled, egghunter, and shellcode in the Host header. Running the script against a vulnerable MiniShare 1.4.1 instance on Windows triggers the overflow and executes the attacker's payload.
Generated on May 25, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
3- www.exploit-db.com/exploits/45999/mitreexploitx_refsource_EXPLOIT-DB
- packetstormsecurity.com/files/150689/MiniShare-1.4.1-HEAD-POST-Buffer-Overflow.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2018/Dec/19mitremailing-listx_refsource_FULLDISC
News mentions
0No linked articles in our index yet.