NetCat "search_query" PHP Code Execution Vulnerability


Description   A vulnerability has been discovered in NetCat, which can be exploited by malicious people to compromise a vulnerable system.
Input passed via the "search_query" parameter to /search is not properly sanitised before being used in a call to "eval()". This can be exploited to inject and execute arbitrary PHP code.
The vulnerability is confirmed in version 4.5.2 Extra. Other versions may also be affected.
     
Vulnerable Products   Vulnerable Software:
NetCat 4.x
     
Solution   Edit the source code to ensure that input is properly sanitised.
     
CVE  
     
References  
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
XMLRPC: possible remote code injection
3.2.0
PHP : HTML code injection prevention - suspicious GLOBALS variable
3.2.0
PHP : Remote file inclusion prevention: suspicious GLOBALS variable
3.2.0
     


 
 
 
 
 Risk level 
High 

 Vulnerability First Public Report Date 
2011-09-14 

 Target Type 
Server 

 Possible exploit 
Remote