Poison Ivy ‘C&C’ Server Buffer Overflow Vulnerability


Poison Ivy is prone to a stack-based buffer-overflow vulnerability.


The original article can be found at: http://www.securityfocus.com/bid/54339


Vulnerable Systems:
 *Poison Ivy ‘C&C’ Server Buffer Overflow Vulnerability

An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.Poison Ivy 2.3.2 is vulnerable; other versions may also be affected.

Vendor Status:
Currently we are not aware of any vendor-supplied patches

Disclosure Timeline:
Initial Release: Jul 06 2012

Categories: News