Open Direct Connect · Open Direct Connect Hub · CVE-2010-1147
**Name of the Vulnerable Software and Affected Versions**
Open Direct Connect Hub version 0.8.1
**Description**
The issue is a stack-based buffer overflow that allows remote authenticated users to execute arbitrary code via a long `MyINFO` message.
**Recommendations**
For Open Direct Connect Hub version 0.8.1, consider restricting the length of `MyINFO` messages to prevent exploitation until a patch is available.