CVE-2004-1286
published 2005-01-10CVE-2004-1286: Buffer overflow in the auto_filter_extern function in auto.c for NapShare 1.2, with the extern filter enabled, allows remote attackers to execute arbitrary…
PriorityP343critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
12.40%
95.7th percentile
Buffer overflow in the auto_filter_extern function in auto.c for NapShare 1.2, with the extern filter enabled, allows remote attackers to execute arbitrary code via a crafted gnutella response.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| napshare | napshare | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
NapShare 1.2 - Remote Buffer Overflow (2)
exploitdb·2004-12-10
CVE-2004-1286 NapShare 1.2 - Remote Buffer Overflow (2)
NapShare 1.2 - Remote Buffer Overflow (2)
---
// source: https://www.securityfocus.com/bid/11967/info
It is reported that NapShare is susceptible to a remote buffer overflow vulnerability. This is due to a failure of the application to properly bounds check user-supplied data prior to copying it to a fixed-size memory buffer.
Attackers running malicious Gnutella servers are reportedly able to exploit this vulnerability to execute arbitrary code in the context of the vulnerable application.
Version 1.2 of NapShare is reported susceptible. Other versions may also be affected.
/*
* napshare_srv_2.c
* 2004.12.10
* Bartlomiej Sieka
*
* This program generates the injection vector used to exploit a buffer
* overflow in napshare version 1.2 (file auto.c, function
* auto_filter_extern.c, buff
Exploit-DB
NapShare 1.2 - Remote Buffer Overflow (1)
exploitdb·2004-12-06
CVE-2004-1286 NapShare 1.2 - Remote Buffer Overflow (1)
NapShare 1.2 - Remote Buffer Overflow (1)
---
// source: https://www.securityfocus.com/bid/11967/info
It is reported that NapShare is susceptible to a remote buffer overflow vulnerability. This is due to a failure of the application to properly bounds check user-supplied data prior to copying it to a fixed-size memory buffer.
Attackers running malicious Gnutella servers are reportedly able to exploit this vulnerability to execute arbitrary code in the context of the vulnerable application.
Version 1.2 of NapShare is reported susceptible. Other versions may also be affected.
/*
* napshare_srv.c
* 2004.12.06
* Bartlomiej Sieka
*
* This program generates the injection vector used to exploit a buffer
* overflow in napshare version 1.2 (file auto.c, function
* auto_filter_extern.c, buffer
No writeups or analysis indexed.
2005-01-10
Published