BID:12742

SafeNet Sentinel License Manager Remote Buffer Overflow Vulnerability

Info

SafeNet Sentinel License Manager Remote Buffer Overflow Vulnerability

Bugtraq ID:	12742
Class:	Input Validation Error
CVE:	CVE-2005-0353
Remote:	Yes
Local:	No
Published:	Mar 07 2005 12:00AM
Updated:	Jul 12 2009 10:56AM
Credit:	Dennis Rand is credited with the discovery of this issue.
Vulnerable:	SafeNet Sentinel License Manager 7.2 .0.2

Not Vulnerable:	SafeNet Sentinel License Manager 8.0

Discussion

SafeNet Sentinel License Manager Remote Buffer Overflow Vulnerability

A remote buffer overflow vulnerability affects SafeNet Sentinel License Manager. This issue is due to a failure of the application to securely copy network-derived data into finite process buffers.

An attacker may leverage this issue to execute arbitrary code with SYSTEM privileges.

Exploit / POC

SafeNet Sentinel License Manager Remote Buffer Overflow Vulnerability

The following exploit has been released. It should be noted that 'sentinel_lm7_overflow.pm' is designed to work with the metasploit framework.

/data/vulnerabilities/exploits/101_SentLM.cpp
/data/vulnerabilities/exploits/sentinel_lm7_overflow.pm

Solution / Fix

SafeNet Sentinel License Manager Remote Buffer Overflow Vulnerability

Solution:
SafeNet has released Sentinel License Manager version 8.0 dealing with this issue. Please contact the vendor for more information on obtaining the upgrade.

References

SafeNet Sentinel License Manager Remote Buffer Overflow Vulnerability

References:

Sentinel License Manager Home Page (SafeNet)
CIRT.DK Advisory - SafeNet Inc Sentinel License Manager 7.2.0.2 Buffer Overflow ("CIRT Advisory" )