Network Block Device (NBD) Server Request Handling Remote Overflow
High Nessus Plugin ID 20341
SynopsisThe remote service is affected by a buffer overflow vulnerability.
DescriptionThe version of the Network Block Device (NBD) server installed on the remote host does not properly check the size of read requests before filling a dynamically-allocated buffer. Using a specially crafted read request, an attacker can overwrite this buffer, which could crash the affected server or allow for the execution of arbitrary code.
SolutionUpgrade to NBD 2.8.3 or later.