Intrusion Prevention

NetCat.Exec.Mode.Client.Request.Buffer.Overflow

Description

This indicates a vulnerability in Netcat 1.1 for Windows NT. The vulnerability is caused by a stack overflow when handling a client request. It allows remote attackers to execute arbitrary code by sending a long string when NetCat is running with the -e option.

Affected Products

Netcat 1.1 for NT.

Impact

System compromise, remote code execution.

Recommended Actions

Upgrade to the latest version, available from the Web site.
NetCat NetCat 1.11
http://www.vulnwatch.org/netcat/nc111nt.zip

CVE References

CVE-2004-1317