← back
CVE-2009-0849

CVE-2009-0849

EPSS 16.5%
Stack-based buffer overflow in the DtbClsLogin function in NovaStor NovaNET 12 allows remote attackers to (1) execute arbitrary code on Linux platforms via a long username field during backup domain authentication, related to libnnlindtb.so; or (2) cause a denial of service (daemon crash) on Windows platforms via a long username field during backup domain authentication, related to nnwindtb.dll. NOTE: some of these details are obtained from third party information.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/32832unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/52301http://osvdb.org/52302http://secunia.com/advisories/34024https://exchange.xforce.ibmcloud.com/vulnerabilities/49074http://www.insight-tech.org/index.php?p=NovaNET-12-Remote-Buffer-Oveflowhttp://www.securityfocus.com/bid/33954