Netris Client-Side Buffer Overrun Vulnerability

info
discussion
exploit
solution
references

Netris Client-Side Buffer Overrun Vulnerability

A client-side buffer overrun vulnerability has been reported for Netris. The issue is said to occur due to insufficient bounds checking when copying a server greeting into an internal memory buffer. Successful exploitation of this issue could potentially allow for the execution of arbitrary code with the privileges of the user invoking Netris.