Multiple Vendor XFERWAN.EXE Remote Buffer Overflow Vulnerability
BID:24002
Info
Multiple Vendor XFERWAN.EXE Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 24002 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-1173 |
| Remote: | Yes |
| Local: | No |
| Published: | May 16 2007 12:00AM |
| Updated: | Nov 01 2007 03:56PM |
| Credit: | Secunia Research discovered these issues. |
| Vulnerable: |
Symantec Discovery 6.5 Numara Numara Asset Manager 8.0 Centennial UK Ltd Discovery 2006 Feature Pack 1 |
| Not Vulnerable: | |
Discussion
Multiple Vendor XFERWAN.EXE Remote Buffer Overflow Vulnerability
Multiple Vendor products are prone to a remote buffer-overflow vulnerability in 'XFERWAN.EXE'.
The vulnerability arises in the 'CentennialIPTransferServer' service when handling strings in TCP packets.
A remote attacker may trigger a denial-of-service condition or may execute arbitrary code with SYSTEM privileges. This may facilitate a complete compromise of affected systems.
The following versions are reported vulnerable:
Centennial Discovery 2006 Feature Pack 1
Symantec Discovery 6.5
Numara Asset Manager 8.0
Earlier versions of each application may be affected as well.
Multiple Vendor products are prone to a remote buffer-overflow vulnerability in 'XFERWAN.EXE'.
The vulnerability arises in the 'CentennialIPTransferServer' service when handling strings in TCP packets.
A remote attacker may trigger a denial-of-service condition or may execute arbitrary code with SYSTEM privileges. This may facilitate a complete compromise of affected systems.
The following versions are reported vulnerable:
Centennial Discovery 2006 Feature Pack 1
Symantec Discovery 6.5
Numara Asset Manager 8.0
Earlier versions of each application may be affected as well.
Exploit / POC
Multiple Vendor XFERWAN.EXE Remote Buffer Overflow Vulnerability
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
Solution / Fix
Multiple Vendor XFERWAN.EXE Remote Buffer Overflow Vulnerability
Solution:
Centennial has released a patch that addresses this issue. The fix is available in the Centennial Customer Zone support site. Please see the vendor references for more information.
Solution:
Centennial has released a patch that addresses this issue. The fix is available in the Centennial Customer Zone support site. Please see the vendor references for more information.
References
Multiple Vendor XFERWAN.EXE Remote Buffer Overflow Vulnerability
References:
References:
- centennial Discovery fix availability (Centennial)
- Centennial Discovery Homepage (Centennial)
- Numara Homepage (Numara)
- Symantec Discovery Homepage (Symantec)
- Centennial Discovery XferWan.exe Packet Parsing Buffer Overflows (Secunia Research)
- Numara Asset Manager XferWan.exe Packet Parsing Buffer Overflows (Secunia Research)
- Symantec Discovery XferWan.exe Packet Parsing Buffer Overflows (Secunia Research)