Massimiliano Montoro Cain & Abel PSK Sniffer Remote Heap Buffer Overflow Vulnerability

Massimiliano Montoro Cain & Abel PSK Sniffer Remote Heap Buffer Overflow Vulnerability

Massimiliano Montoro Cain & Abel is reported prone to a heap-based buffer overflow vulnerability. The issue is reported to exist due to a lack of sufficient boundary checks performed when processing certain IKE packet parameter data.

It is reported that a remote attacker may leverage this vulnerability to execute arbitrary code in the context of a victim user that is running the vulnerable application.

Cain & Abel version 2.65 is reported prone to this vulnerability.