DConnect Daemon - Listen Thread UDP Remote Buffer Overflow

EDB-ID:

28344




Platform:

Multiple

Date:

2006-08-06


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux and pass the exam to become an Offensive Security Certified Professional (OSCP). All new content for 2020.

GET CERTIFIED

source: https://www.securityfocus.com/bid/19369/info

DConnect Daemon is prone to a buffer-overflow vulnerability because the library fails to do proper boundary checks before copying user-supplied data into a finite-sized buffer.

This issue allows remote attackers to execute arbitrary code within the context of the application or cause the application to crash causing a denial of service. 

Version 0.7.0, CVS July 30th 2006 and prior versions are vulnerable to this issue.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/28344.zip