Dns2tcp 'dns_decode.c' Remote Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Dns2tcp 'dns_decode.c' Remote Buffer Overflow Vulnerability

Dns2tcp is prone to a remote buffer-overflow vulnerability because it fails to properly validate user-supplied input.

A remote attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely crash the application, causing denial-of-service conditions.

Versions prior to Dns2tcp 0.4.2 are vulnerable.