Published: 16/09/2011 Updated: 04/06/2012

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Multiple stack-based buffer overflows in the DH_OneSecondTick function in Cogent DataHub 7.1.1.63 and previous versions allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via long (1) domain, (2) report_domain, (3) register_datahub, or (4) slave commands.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cogentdatahub cogent datahub 7.1.1
cogentdatahub cogent datahub 7.1.0
cogentdatahub cogent datahub 7.0.2
cogentdatahub cogent datahub 7.0
cogentdatahub cogent datahub

####################################################################### Luigi Auriemma Application: Cogent DataHub wwwcogentdatahubcom/Products/Cogent_DataHubhtml Versions: <= 71163 Platforms: Windows Bug: stack unicode overflow Exploitation: remote Date: 13 Sep 2 ...

#!/usr/bin/python # # Cogent Datahub <= v71163 Remote Unicode Buffer Overflow Exploit # tested on: # - windows server 2003 # - windows XP sp3 # questions >> @net__ninja || @luigi_auriemma # example usage: # [mr_me@neptune cognet]$ /cognet_overflowpy 192168114130 # # ----------------------------------------------------- # ------ Cog ...

CWE-119 http://aluigi.altervista.org/adv/cogent_1-adv.txt http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-256-03.pdf https://nvd.nist.gov https://www.exploit-db.com/exploits/17838/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-3493

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect