|
|
>> eIQnetworks Enterprise Security Analyzer Multiple Remote Buffer Overflow Vulnerabilities
|
Title : eIQnetworks Enterprise Security Analyzer Multiple Remote Buffer Overflow Vulnerabilities
VUPEN ID : VUPEN/ADV-2006-2985
CVE ID : CVE-2006-3838
Rated as : Critical 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2006-07-26
|
Multiple vulnerabilities have been identified in eIQnetworks Enterprise Security Analyzer, which could be exploited by remote attackers to take complete control of an affected system.
The first issue is due to a buffer overflow error in the Syslog daemon (syslogserver.exe) that does not properly handle overly long strings (the affected TCP port is not exposed by default), which could be exploited by attackers to execute arbitrary commands.
The second vulnerability is due to a buffer overflow error in the EnterpriseSecurityAnalyzer.exe and the license manager (port 10616/TCP) that do not properly handle an overly long argument passed to the "LICMGR_ADDLICENSE" command, which could be exploited by attackers to execute arbitrary commands.
The third flaw is due to a buffer overflow error in the Topology service (Topology.exe) that does not properly handle overly long prefixes passed to the "GUIADDDEVICE", "ADDDEVICE", and "DELETEDEVICE" commands, which could be exploited by attackers to compromise a vulnerable system.
The fourth vulnerability is due to a buffer overflow error in the Syslog service that does not properly handle overly long arguments passed to certain commands (e.g. "DELTAINTERVAL" and "LOGFOLDER"), which could be exploited by attackers to compromise a vulnerable system.
The fifth issue is due to an unspecified error in the Monitoring service (port 9999/TCP).
Affected Products
eIQnetworks Enterprise Security Analyzer versions prior to 2.5.0
Solution
Upgrade to eIQnetworks Enterprise Security Analyzer version 2.5.0 :
http://www.eiqnetworks.com/support/supportticket.shtml
References
http://www.vupen.com/english/advisories/2006/2985
http://www.eiqnetworks.com/products/enterprisesecurity/EnterpriseSecurityAnalyzer/ESA_2.5.0_Release_Notes.pdf
http://www.zerodayinitiative.com/advisories/ZDI-06-023.html
http://www.zerodayinitiative.com/advisories/ZDI-06-024.html
http://www.tippingpoint.com/security/advisories/TSRT-06-03.html
http://www.tippingpoint.com/security/advisories/TSRT-06-04.html
Credits
Vulnerabilities reported by Titon, JxT, KF, Bastard Labs, Cody Pierce, and ZDI.
ChangeLog
2006-07-26 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
