SMART Technologies SynchronEyes Multiple Remote Denial of Service Vulnerabilities
BID:17373
Info
SMART Technologies SynchronEyes Multiple Remote Denial of Service Vulnerabilities
| Bugtraq ID: | 17373 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 04 2006 12:00AM |
| Updated: | Apr 05 2006 04:53PM |
| Credit: | Dennis Elser <[email protected]> discovered these issues. |
| Vulnerable: |
SMART Technologies SynchronEyes 6.0 |
| Not Vulnerable: | |
Discussion
SMART Technologies SynchronEyes Multiple Remote Denial of Service Vulnerabilities
SynchronEyes is susceptible to multiple remote denial-of-service vulnerabilities. The application fails to properly:
- handle certain UDP traffic
- sanitize user-supplied network data.
These issues allow remote attackers to cause the application to fail to respond to new requests. Attackers may even crash the application, denying further service to legitimate users.
Version 6.0 is vulnerable to these issues; other versions may also be affected.
SynchronEyes is susceptible to multiple remote denial-of-service vulnerabilities. The application fails to properly:
- handle certain UDP traffic
- sanitize user-supplied network data.
These issues allow remote attackers to cause the application to fail to respond to new requests. Attackers may even crash the application, denying further service to legitimate users.
Version 6.0 is vulnerable to these issues; other versions may also be affected.
Exploit / POC
SMART Technologies SynchronEyes Multiple Remote Denial of Service Vulnerabilities
Attackers would use standard network utilities to exploit these issues.
Attackers would use standard network utilities to exploit these issues.
Solution / Fix
SMART Technologies SynchronEyes Multiple Remote Denial of Service Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
References
SMART Technologies SynchronEyes Multiple Remote Denial of Service Vulnerabilities
References:
References: