Stack-based buffer overflow in the run_init_sbus function in the KCodes NetUSB module for the Linux kernel, as used in certain NETGEAR products, TP-LINK products, and other products, allows remote malicious users to execute arbitrary code by providing a long computer name in a session on TCP port 20005.
Exploit KCodes NetUSB | Kernel Stack Buffer Overflow | Denial of Service (DoS) Exploit para explotar la vulnerabilidad CVE-2015-3036 Found by: Stefan Viehböck (Office Vienna) | SEC Consult Vulnerability Lab | wwwsec-consultcom Exploit author: Adrián Ruiz Bermudo | @funsecurity | wwwfunsecuritynet Advisory: wwwsec-consultcom/fxdata/secco
TD-W8970-NetUSB-Fix-v1- Fix NetUSB Bug for TD-W8970 v1 - Firmware Version: 060 214 v000c0 Build 150619 Rel50856n A serious vulnerability affecting the NetUSB kernel driver developed by Taiwan-based tech company KCodes exposes millions of routers to hack attack Researchers at SEC Consult discovered that the NetUSB driver is plagued by a kernel stack buffer overflow vulnera
MiraiSecurity Mirai wwwcdxyme/?p=746 wwwfreebufcom/articles/network/119403html pastebincom/svH8tvd9 wwwfreebufcom/sectool/130091html wwwtuicoolcom/articles/qM7rMnb h4ckth4tsh1tcom/indexphp?u=/topic/18/ggsetup-a-mirai-botnet githubcom/rootblack45/Mirai-Source-Modded githubcom/Screamfox/-Mirai-Iot-BotNet
Vulnerability may allow ne'er-do-wells to access the 1990s
SEC Consult Vulnerability Lab Stefan Viehböck says potentially millions of routers and internet of things devices using KCodes NetUSB could be exposed to remote hijacking or denial of service attacks.
The packet fondler says the vulnerability (CVE-2015-3036) hits the Linux kernel module in scores of popular routers which serves to provide network access over TCP port 20005 to USB devices plugged into routers such as printers and external hard drives.
Viehböck says the vulnerability...
The Department of Homeland Security-sponsored CERT at Carnegie Mellon University today issued an alert warning of a serious vulnerability in KCode NetUSB, which is integrated into products sold by a number of networking vendors.
KCodes NetUSB is a Linux kernel module that enables several users on a local network to share USB-based services over IP.
The vulnerability, reported by Stefan Viehbock of SEC Consult Vulnerability Lab, must be patched via new firmware. To date, SEC Consult s...