CVE-2010-2799

Name of the Vulnerable Software and Affected Versions Socat versions 1.5.0.0 through 1.7.1.2 Socat versions 2.0.0-b1 through 2.0.0-b3

Description A stack-based buffer overflow issue exists in the nestlex function in nestlex.c, which can be exploited when bidirectional data relay is enabled. This allows attackers to execute arbitrary code via long command-line arguments.

Recommendations For Socat versions 1.5.0.0 through 1.7.1.2, update to a version outside of this range to resolve the issue. For Socat versions 2.0.0-b1 through 2.0.0-b3, update to a version outside of this range to resolve the issue. As a temporary workaround, consider disabling bidirectional data relay until a patch is available.