Mocha Telnet Lite for iOS 4.2 - 'User' Denial of Service (PoC)

vendor:

Mocha Telnet Lite for iOS

by:

Luis Martinez

7.8

CVSS

HIGH

Denial of Service (DoS) Local

119

CWE

Product Name: Mocha Telnet Lite for iOS

Affected Version From: 4.2

Affected Version To: 4.2

Patch Exists: YES

Related CWE: N/A

CPE: a:mochasoft:mocha_telnet_lite_for_ios

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: iPhone 7 iOS 13.5.1

2020

Mocha Telnet Lite for iOS 4.2 – ‘User’ Denial of Service (PoC)

A buffer overflow vulnerability exists in Mocha Telnet Lite for iOS 4.2 when a maliciously crafted 'User' value is sent to the application. An attacker can leverage this vulnerability to cause a denial of service condition.

Mitigation:

Upgrade to the latest version of Mocha Telnet Lite for iOS.

Source

Mocha Telnet Lite for iOS 4.2 – ‘User’ Denial of Service (PoC)

Mitigation:

Exploit-DB raw data: