GoodTech Systems Telnet Server for Windows NT/2000/XP/2003 Remote Buffer Overflow Vulnerability
BID:12815
Info
GoodTech Systems Telnet Server for Windows NT/2000/XP/2003 Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 12815 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2005-0768 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 15 2005 12:00AM |
| Updated: | Jul 12 2009 10:56AM |
| Credit: | Komrade <[email protected]> is credited with the discovery of this issue. |
| Vulnerable: |
GoodTech Telnet Server for Windows NT/2000/XP/2003 5.0 GoodTech Telnet Server for Windows NT/2000/XP/2003 4.0 |
| Not Vulnerable: | |
Discussion
GoodTech Systems Telnet Server for Windows NT/2000/XP/2003 Remote Buffer Overflow Vulnerability
A remote buffer overflow vulnerability affects GoodTech Systems Telnet Server for Windows NT/2000/XP/2003. This issue is due to a failure of the application to securely copy network-derived data into sensitive process buffers.
An attacker may leverage this issue to execute arbitrary code with SYSTEM privileges on a computer running a vulnerable version of the affected software.
A remote buffer overflow vulnerability affects GoodTech Systems Telnet Server for Windows NT/2000/XP/2003. This issue is due to a failure of the application to securely copy network-derived data into sensitive process buffers.
An attacker may leverage this issue to execute arbitrary code with SYSTEM privileges on a computer running a vulnerable version of the affected software.
Exploit / POC
GoodTech Systems Telnet Server for Windows NT/2000/XP/2003 Remote Buffer Overflow Vulnerability
The 'goodTechTelnetBufferOverflowPoC.c proof of concept has been made available. The exploit 'goodTechTelnetBufferOverflowExploit.c' has been made available as well.
The 'goodTechTelnetBufferOverflowPoC.c proof of concept has been made available. The exploit 'goodTechTelnetBufferOverflowExploit.c' has been made available as well.
Solution / Fix
GoodTech Systems Telnet Server for Windows NT/2000/XP/2003 Remote Buffer Overflow Vulnerability
Solution:
Reportedly the vendor has released an upgrade dealing with this issue, although this is not confirmed. Please contact the vendor for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Reportedly the vendor has released an upgrade dealing with this issue, although this is not confirmed. Please contact the vendor for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
GoodTech Systems Telnet Server for Windows NT/2000/XP/2003 Remote Buffer Overflow Vulnerability
References:
References: