Inferno Nettverk Dante select() Bitmap Remote Buffer Overflow Vulnerability
BID:12349
Info
Inferno Nettverk Dante select() Bitmap Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 12349 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 24 2005 12:00AM |
| Updated: | Jan 24 2005 12:00AM |
| Credit: | Discovery is credited to 3APA3A <[email protected]>. |
| Vulnerable: |
Inferno Nettverk Dante 1.1 |
| Not Vulnerable: | |
Discussion
Inferno Nettverk Dante select() Bitmap Remote Buffer Overflow Vulnerability
Dante is prone to a remote buffer overflow due to implementation of the select() system call. This issue could be exploited to cause a denial of service or potentially execute arbitrary code.
Dante is prone to a remote buffer overflow due to implementation of the select() system call. This issue could be exploited to cause a denial of service or potentially execute arbitrary code.
Exploit / POC
Inferno Nettverk Dante select() Bitmap Remote Buffer Overflow Vulnerability
The researcher responsible for discovering this issue has developed exploit code to leverage this vulnerability. The exploit code has not been released to the public.
The researcher responsible for discovering this issue has developed exploit code to leverage this vulnerability. The exploit code has not been released to the public.
Solution / Fix
Inferno Nettverk Dante select() Bitmap Remote Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Inferno Nettverk Dante select() Bitmap Remote Buffer Overflow Vulnerability
References:
References:
- Dante Product Page (Inferno Nettverk)
- SECURITY.NNOV: Multiple applications fd_set structure bitmap array index overflo (3APA3A <[email protected]>)