Vulnerabilities > CVE-2004-1317 - Remote Security vulnerability in Netcat

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
netcat
exploit available
metasploit
NVD
Published: 2004-12-27
Updated: 2017-07-11

Summary

Stack-based buffer overflow in doexec.c in Netcat for Windows 1.1, when running with the -e option, allows remote attackers to execute arbitrary code via a long DNS command.

Vulnerable Configurations

Part Description Count
Application
Netcat
1

Exploit-Db

  • descriptionNetcat v1.1 "-e" Switch Remote Buffer Overflow Exploit. CVE-2004-1317. Remote exploit for windows platform
    idEDB-ID:726
    last seen2016-01-31
    modified2004-12-26
    published2004-12-26
    reporterclass101
    sourcehttps://www.exploit-db.com/download/726/
    titleNetcat 1.1 - "-e" Switch Remote Buffer Overflow Exploit
  • descriptionNetcat v1.10 NT Stack Buffer Overflow. CVE-2004-1317. Remote exploit for windows platform
    idEDB-ID:16436
    last seen2016-02-01
    modified2010-06-22
    published2010-06-22
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/16436/
    titleNetcat 1.10 - NT Stack Buffer Overflow

Metasploit

descriptionThis module exploits a stack buffer overflow in Netcat v1.10 NT. By sending an overly long string we are able to overwrite SEH. The vulnerability exists when netcat is used to bind (-e) an executable to a port in doexec.c. This module tested successfully using "c:\>nc -L -p 31337 -e ftp".
idMSF:EXPLOIT/WINDOWS/MISC/NETCAT110_NT
last seen2020-06-01
modified2017-11-08
published2007-09-26
referenceshttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1317
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/misc/netcat110_nt.rb
titleNetcat v1.10 NT Stack Buffer Overflow

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/83199/netcat110_nt.rb.txt
idPACKETSTORM:83199
last seen2016-12-05
published2009-11-26
reporterpatrick
sourcehttps://packetstormsecurity.com/files/83199/Netcat-v1.10-NT-Stack-Overflow.html
titleNetcat v1.10 NT Stack Overflow

References