VYPR

Cain & Abel

by Cain & Abel

CVEs (2)

  • CVE-2008-5405Dec 10, 2008
    risk 0.07cvss epss 0.47

    Stack-based buffer overflow in the RDP protocol password decoder in Cain & Abel 4.9.23 and 4.9.24, and possibly earlier, allows remote attackers to execute arbitrary code via an RDP file containing a long string.

  • CVE-2022-50933Jan 13, 2026
    risk 0.00cvss epss 0.00

    Cain & Abel 4.9.56 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated privileges. Attackers can exploit the unquoted binary path to inject malicious executables that will be launched with LocalSystem…