CVE-2024-25003

HIGH

9bis/kitty < 0.76.1.13 - Stack-Based Buffer Overflow via Hostname

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-25003. PoCs published by DEFCESCO.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in KiTTY 0.76.1.13 via the 'Start Duplicated Session Hostname' feature. It uses a ROP chain and shellcode to achieve remote code execution, leveraging a bind shell payload generated by Metasploit.

Description

KiTTY versions 0.76.1.13 and before is vulnerable to a stack-based buffer overflow via the hostname, occurs due to insufficient bounds checking and input sanitization. This allows an attacker to overwrite adjacent memory, which leads to arbitrary code execution.

Exploits (1)

exploitdb WORKING POC
by DEFCESCO · pythonlocalwindows
https://www.exploit-db.com/exploits/51890

This exploit demonstrates a buffer overflow vulnerability in KiTTY 0.76.1.13 via the 'Start Duplicated Session Hostname' feature. It uses a ROP chain and shellcode to achieve remote code execution, leveraging a bind shell payload generated by Metasploit.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: KiTTY ≤ 0.76.1.13
No auth needed
Prerequisites: Victim must open a malicious session or interact with crafted input
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Mailing List, Third Party Advisory mailing-list
http://seclists.org/fulldisclosure/2024/Feb/13
Exploit, Mailing List, Third Party Advisory mailing-list
http://seclists.org/fulldisclosure/2024/Feb/14

Scores

CVSS v3 7.8
EPSS 0.0181
EPSS Percentile 75.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-787
Status published
Products (1)
9bis/kitty < 0.76.1.13
Published Feb 09, 2024
Tracked Since Feb 18, 2026