Posted by malvuln on Jan 19

Discovery / credits: malvuln – (c) 2021
Original source:
Contact: malvuln13 () gmail com

Threat: Backdoor.Win32.Ketch.i
Vulnerability: SEH Remote Stack Buffer Overflow
Description: Ketch makes HTTP request to port 80 for a file named
script.dat, upon processing the server response of 1,612 bytes or more
we can trigger SEH buffer overflow.
Read More – Full Disclosure

By |2021-01-19T18:24:37-05:00January 19th, 2021|