• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

eMule Client Servername Format String Vulnerability

eMule client has been reported prone to a format string vulnerability. The issue presents itself when the client processes a malicious server name. Ultimately, a remote attacker may exploit this condition to trigger a denial of service condition in the affected client. Although unconfirmed it has been conjectured that this issue may also be exploited to reveal memory. Remote code execution is not believed to be possible.