Kerberized Netcat CVE-2017-9732 Denial of Service Vulnerability
BID:106427
Info
Kerberized Netcat CVE-2017-9732 Denial of Service Vulnerability
| Bugtraq ID: | 106427 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2017-9732 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 28 2018 12:00AM |
| Updated: | Nov 28 2018 12:00AM |
| Credit: | Imre Rad <[email protected]> |
| Vulnerable: |
OSKT KNC 1.7.1 OSKT KNC 1.6.1 OSKT KNC 1.7 OSKT KNC 1.6 OSKT KNC 0 |
| Not Vulnerable: |
OSKT KNC 1.11-1 |
Discussion
Kerberized Netcat CVE-2017-9732 Denial of Service Vulnerability
Kerberized Netcat is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to consume memory resources and cause a denial-of-service condition.
Kerberized Netcat 1.11-1 and prior versions are vulnerable.
Kerberized Netcat is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to consume memory resources and cause a denial-of-service condition.
Kerberized Netcat 1.11-1 and prior versions are vulnerable.
Solution / Fix
Kerberized Netcat CVE-2017-9732 Denial of Service Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Kerberized Netcat CVE-2017-9732 Denial of Service Vulnerability
References:
References:
- knc: fix a couple of memory leaks. (Github)
- Open Source Kerberos Tooling Home Page (Open Source Kerberos Tooling)
- Open Source Kerberos Tooling KNC Product Page (Open Source Kerberos Tooling)
- PoC memory exhaustion exploit of kerberized netcat (Github)
- CVE-2017-9732: knc (kerberized netcat) memory exhaustion (Seclist)