Alt-N MDaemon/WorldClient Form2Raw Raw Message Handler Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Alt-N MDaemon/WorldClient Form2Raw Raw Message Handler Buffer Overflow Vulnerability

Proof of concept exploit has been provided. Exploit code has been provided by rave <rave@rosiello.org>.

CORE has developed a working commercial exploit for their IMPACT
product. This exploit is not otherwise publicly available or known
to be circulating in the wild.

/data/vulnerabilities/exploits/mdaemon_poc.c
/data/vulnerabilities/exploits/mdaemon_exp.c