Knox Arkeia Type 77 Request Remote Stack-Based Buffer Overrun Vulnerability
BID:12594
Info
Knox Arkeia Type 77 Request Remote Stack-Based Buffer Overrun Vulnerability
| Bugtraq ID: | 12594 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2005-0491 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 18 2005 12:00AM |
| Updated: | Nov 15 2007 12:39AM |
| Credit: | Discovery of this vulnerability is credited to "John Doe" <[email protected]>. |
| Vulnerable: |
Knox Software Arkeia 5.3 Knox Software Arkeia 5.2 Knox Software Arkeia 4.2 Knox Software Arkeia 4.1 Knox Software Arkeia 4.0 |
| Not Vulnerable: |
Knox Software Arkeia 5.3.5 |
Discussion
Knox Arkeia Type 77 Request Remote Stack-Based Buffer Overrun Vulnerability
The Knox Arkeia Server is prone to a remotely exploitable stack-based buffer overrun. The issue occurs because the software fails to do sufficient bounds checking when handling data contained within a type 77 request packet.
A remote attacker may leverage this issue to execute arbitrary code in the context of the vulnerable service.
The Knox Arkeia Server is prone to a remotely exploitable stack-based buffer overrun. The issue occurs because the software fails to do sufficient bounds checking when handling data contained within a type 77 request packet.
A remote attacker may leverage this issue to execute arbitrary code in the context of the vulnerable service.
Exploit / POC
Knox Arkeia Type 77 Request Remote Stack-Based Buffer Overrun Vulnerability
UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
Exploit code is available.
Exploit code (arkeia_type77_win32.pm and arkeia_type77_macos.pm) as part of the Metasploit Framework project has been released.
UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
Exploit code is available.
Exploit code (arkeia_type77_win32.pm and arkeia_type77_macos.pm) as part of the Metasploit Framework project has been released.
Solution / Fix
Knox Arkeia Type 77 Request Remote Stack-Based Buffer Overrun Vulnerability
Solution:
The vendor has released Arkeia Server 5.3.5 to address this vulnerability.
Knox Software Arkeia 4.0
Knox Software Arkeia 4.1
Knox Software Arkeia 4.2
Knox Software Arkeia 5.2
Knox Software Arkeia 5.3
Solution:
The vendor has released Arkeia Server 5.3.5 to address this vulnerability.
Knox Software Arkeia 4.0
-
Knox Software Arkeia Network Backup version 5.3.5
ftp://ftp.arkeia.com/
Knox Software Arkeia 4.1
-
Knox Software Arkeia Network Backup version 5.3.5
ftp://ftp.arkeia.com/
Knox Software Arkeia 4.2
-
Knox Software Arkeia Network Backup version 5.3.5
ftp://ftp.arkeia.com/
Knox Software Arkeia 5.2
-
Knox Software Arkeia Network Backup version 5.3.5
ftp://ftp.arkeia.com/
Knox Software Arkeia 5.3
-
Knox Software Arkeia Network Backup version 5.3.5
ftp://ftp.arkeia.com/
References
Knox Arkeia Type 77 Request Remote Stack-Based Buffer Overrun Vulnerability
References:
References:
- Knox Software Home Page (Knox Software)
- Metasploit Framework Exploits (Metasploit)
- Knox Arkeia remote root/system exploit ("John Doe"
- Re: Knox Arkeia remote root/system exploit (H D Moore