netKar PRO 1.1 - '.nkuser' File Creation Null Pointer Denial of Service

EDB-ID:

33849

CVE:





Platform:

Windows

Date:

2014-06-13


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux and pass the exam to become an Offensive Security Certified Professional (OSCP). All new content for 2020.

source: https://www.securityfocus.com/bid/39558/info

netKar PRO is prone to a remote denial-of-service vulnerability because it fails to adequately sanitize user-supplied input.

Exploiting this issue will cause the server to copy data to a NULL pointer, which will crash the server, denying access to legitimate users.

netKar PRO 1.1 is vulnerable; other versions may also be affected. 

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/33849.zip