Stack-based buffer overflow in the get_packet method in socket.c in dhcpcd 3.2.3 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long packet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
roy marples dhcpcd 3.2.3 |
Metasploit module released to make 0day pwnage easy
Rapid 7 security man Todd Beardsley says new firmware released to patch hardcoded SSH keys in Advantech EKI industrial control system gateways contains known brutal flaws including Shellshock, Heartbleed, and buffer overflows. A module for the Metasploit hacking box has been published to help attackers hose the zero day holes in systems reachable through the internet. The EKI-122X series hardware last month was found to contain hardcoded SSH keys that mean remote attackers could eavesdrop on the...