|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
iodine client 0.3.2 buffer overflow
poplix
papuasia.org
Date: Thu Nov 02 2006 - 12:12:09 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
hi,
iodine client 0.3.2, available at http://code.kryo.se/iodine/ , suffers from a stack-based buffer overflow vulnerability which could result in the execution of arbitrary code.
A specially crafted dns response sent through an UDP packet can be used to exploit this issue.
cheers
-p
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]