Vulnerabilities > CVE-2006-4125 - Remote Buffer Overflow vulnerability in Dconnect Daemon 0.0.2/0.0.3/0.7.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
dconnect
exploit available

Summary

Stack-based buffer overflow in main.c in DConnect Daemon 0.7.0 and earlier allows remote attackers to execute arbitrary code via a large nickname, which is not properly handled by the listen_thread_udp function. This vulnerability is addressed in the following product release: DConnect, DConnect Daemon, 0.7.1

Vulnerable Configurations

Part Description Count
Application
Dconnect
3

Exploit-Db

descriptionDConnect Daemon Listen Thread UDP Remote Buffer Overflow Vulnerability. CVE-2006-4125. Remote exploits for multiple platform
idEDB-ID:28344
last seen2016-02-03
modified2006-08-06
published2006-08-06
reporterLuigi Auriemma
sourcehttps://www.exploit-db.com/download/28344/
titleDConnect Daemon Listen Thread UDP Remote Buffer Overflow Vulnerability