Back to search
CVE-2010-2799
Published: Sep 14, 2010
Modified: Sep 25, 2024
PUBLISHED
Description
Stack-based buffer overflow in the nestlex function in nestlex.c in Socat 1.5.0.0 through 1.7.1.2 and 2.0.0-b1 through 2.0.0-b3, when bidirectional data relay is enabled, allows context-dependent attackers to execute arbitrary code via long command-line arguments.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=620426
x_refsource_CONFIRM
http://www.dest-unreach.org/socat/download/socat-1.7.1.3.patch
x_refsource_CONFIRM
http://www.dest-unreach.org/socat/contrib/socat-secadv2.html
x_refsource_CONFIRM
http://bugs.gentoo.org/show_bug.cgi?id=330785
x_refsource_CONFIRM
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=591443
x_refsource_CONFIRM
DSA-2090
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now