CVE-2015-3036
Description
Stack-based buffer overflow in the run_init_sbus function in the KCodes NetUSB module for the Linux kernel, as used in certain NETGEAR products, TP-LINK products, and other products, allows remote attackers to execute arbitrary code by providing a long computer name in a session on TCP port 20005.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or β if you've already worked around this in production β publish your fix to the community-verified tier.
β Propose a mitigation on Community β Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Exploits
Public proof-of-concept code below. AS-IS, for defenders and authorised testing only.
Exploit-DB
NetUSB - Kernel Stack Buffer Overflow
Linux/MIPS Kernel 2.6.36 - 'NetUSB' Remote Code Execution
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| kcodes | netusb | - | |
References
- http://blog.sec-consult.com/2015/05/kcodes-netusb-how-small-taiwanese.html
- http://packetstormsecurity.com/files/131987/KCodes-NetUSB-Buffer-Overflow.html
- http://packetstormsecurity.com/files/133919/NetUSB-Stack-Buffer-Overflow.html
- http://seclists.org/fulldisclosure/2015/May/74
- http://seclists.org/fulldisclosure/2015/Oct/50
- http://www.kb.cert.org/vuls/id/177092
- http://www.securityfocus.com/bid/74724
- http://www.securitytracker.com/id/1032377
- https://www.exploit-db.com/exploits/38454/
- https://www.exploit-db.com/exploits/38566/
- https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20150519-0_KCodes_NetUSB_Kernel_Stack_Buffer_Overflow_v10.txt
- http://blog.sec-consult.com/2015/05/kcodes-netusb-how-small-taiwanese.html
- http://packetstormsecurity.com/files/131987/KCodes-NetUSB-Buffer-Overflow.html
- http://packetstormsecurity.com/files/133919/NetUSB-Stack-Buffer-Overflow.html
- http://seclists.org/fulldisclosure/2015/May/74
- http://seclists.org/fulldisclosure/2015/Oct/50
- http://www.kb.cert.org/vuls/id/177092
- http://www.securityfocus.com/bid/74724
- http://www.securitytracker.com/id/1032377
- https://www.exploit-db.com/exploits/38454/
- https://www.exploit-db.com/exploits/38566/
- https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20150519-0_KCodes_NetUSB_Kernel_Stack_Buffer_Overflow_v10.txt
CWEs
CWE-119
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.