Published: 05/03/2014 Updated: 09/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in GetGo Download Manager 4.9.0.1982, 4.8.2.1346, 4.4.5.502, and previous versions allows remote malicious users to cause a denial of service (crash) and execute arbitrary code via a long HTTP Response Header.

Vulnerable Product	Search on Vulmon	Subscribe to Product
getgosoft getgo download manager 4.9.0.1982
getgosoft getgo download manager
getgosoft getgo download manager 4.8.2.1346

#!/usr/bin/python # Exploit Title: GetGo Download Manager HTTP Response Header Buffer Overflow Remote Code Execution # Version: v4901982 # CVE: CVE-2014-2206 # Date: 2014-03-09 # Author: Julien Ahrens (@MrTuxracer) # Homepage: wwwrcesecuritycom # Software Link: wwwgetgosoftcom # Tested on: ...

GetGo Download Manager version 4901982 HTTP response header buffer overflow remote code execution exploit ...

GetGo Download Manager versions 4901982, 4821346, and 445502 suffer from a stack based buffer overflow ...

CWE-119 http://www.rcesecurity.com/2014/03/cve-2014-2206-getgo-download-manager-http-response-header-buffer-overflow-remote-code-execution http://www.securityfocus.com/bid/65913 http://www.securityfocus.com/archive/1/531326/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/32132/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-2206

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect