Netcat Buffer Overflow Vulnerability

Monday, January 3rd, 2005
by Marc Erickson

Secunia Advisory: SA13609

class101 has reported a vulnerability in Netcat for Windows, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to a boundary error in the “SessionWriteShellThreadFn()” function in “doexec.c” when writing to a pipe connected to a shell process. This can be exploited to cause a buffer overflow by sending specially crafted overly long data to a listening port.

Successful exploitation allows execution of arbitrary code, but requires that Netcat has been invoked with the “-e” command line option.

NOTE: Exploit code has been published on a public mailing list.

The vulnerability has been reported in version 1.1. Prior versions may also be affected.

Solution: Update to version 1.11.

Critical: Moderately critical

Impact: System access

Where: From local network

Solution Status: Vendor Patch

Software: Netcat for Windows 1.x

What Do You Think?

Want to Start a Blog Here for Free?

Are you an expert in one subject or another? If your goal is to help others and dispense hard-earned information back to the community, stake a claim on your very own Lockergnome blog today! You can write about anything - no matter the topic. Sign-up to start blogging!

Tips - Oct 6, 2008

System Recovery Options In Vista Part II

Norton Removal Tool (SymNRT) v2009.0.0.41
Monday, October 6, 2008
Oracle Magazine
Monday, October 6, 2008
TrackVia: Get An Online Database In Minutes
Friday, October 3, 2008
Steven Choy Measures Server Performance
Friday, October 3, 2008
System Recovery Options In Vista Part I
Friday, October 3, 2008

Business, Resources, Troubleshooting - Oct 3, 2008

Software Test & Performance Magazine

It Is Phishing Season
Thursday, October 2, 2008
iPhone Is Looking Old? Not So Fast…
Thursday, October 2, 2008
Save Up To 30% On Apple Books @ Peachpit.com
Thursday, October 2, 2008
Improve Your Word Processing Efficiency With Keyboard Shortcuts Part II
Thursday, October 2, 2008
Database Trends And Applications
Thursday, October 2, 2008

Talk - Sep 30, 2008

Getting Paid For Doing Nothing With Your PC

Save Up To 30% On IT Books And Video Training
Tuesday, September 30, 2008
Add Tags To Your Documents In Vista
Tuesday, September 30, 2008
eWeek
Tuesday, September 30, 2008
A PC Repair Slowdown?
Monday, September 29, 2008
Kim Tripp Indexes Everything
Monday, September 29, 2008

Tips - Sep 29, 2008

Name Your Files So They Are Easier To Find

Matching Supply And Demand Of Your Talent: Professional Services In 2008
Monday, September 29, 2008
UnChrome Your Browser
Thursday, September 25, 2008
Does Vista Need To Go Back To School?
Thursday, September 25, 2008
Manage Your Files More Effectively With These Tips Part II
Thursday, September 25, 2008
Managing User Experience And The Organization
Thursday, September 25, 2008

66 queries / 0.280 seconds.