Remote Code Execution Vulnerability in Network Block Device (nbd) Server 2.7.5 and Earlier, and 2.8.0 through 2.8.2

Remote Code Execution Vulnerability in Network Block Device (nbd) Server 2.7.5 and Earlier, and 2.8.0 through 2.8.2

CVE-2005-3534 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Buffer overflow in the Network Block Device (nbd) server 2.7.5 and earlier, and 2.8.0 through 2.8.2, allows remote attackers to execute arbitrary code via a large request, which is written past the end of the buffer because nbd does not account for memory taken by the reply header.

Learn more about our Cis Benchmark Audit For Server Software.