MultiXTpm Application Server DebugPrint() Remote Buffer Overflow Vulnerability
BID:26173
Info
MultiXTpm Application Server DebugPrint() Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 26173 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-5675 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 19 2007 12:00AM |
| Updated: | May 07 2015 05:34PM |
| Credit: | The vendor reported this vulnerability. |
| Vulnerable: |
MultiXTpm Application Server MultiXTpm Application Server 4.0.2 MultiXTpm Application Server MultiXTpm Application Server 4.0.2c MultiXTpm Application Server MultiXTpm Application Server 4.0.2b |
| Not Vulnerable: |
MultiXTpm Application Server MultiXTpm Application Server 4.0.2d |
Discussion
MultiXTpm Application Server DebugPrint() Remote Buffer Overflow Vulnerability
MultiXTpm Application Server is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.
A remote attacker may be able to exploit this issue to execute arbitrary code and gain unauthorized access.
Versions prior to MultiXTpm Application Server 4.0.2d are vulnerable.
MultiXTpm Application Server is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.
A remote attacker may be able to exploit this issue to execute arbitrary code and gain unauthorized access.
Versions prior to MultiXTpm Application Server 4.0.2d are vulnerable.
Exploit / POC
MultiXTpm Application Server DebugPrint() Remote Buffer Overflow Vulnerability
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
MultiXTpm Application Server DebugPrint() Remote Buffer Overflow Vulnerability
Solution:
The vendor released an update to address this issue.
MultiXTpm Application Server MultiXTpm Application Server 4.0.2c
MultiXTpm Application Server MultiXTpm Application Server 4.0.2
Solution:
The vendor released an update to address this issue.
MultiXTpm Application Server MultiXTpm Application Server 4.0.2c
-
MultiXTpm Application Server MultiXTpmApplicationServer-4.0.2d.zip
http://downloads.sourceforge.net/multixtpm/MultiXTpmApplicationServer- 4.0.2d.zip?modtime=1192820805&big_mirror=0
MultiXTpm Application Server MultiXTpm Application Server 4.0.2
-
MultiXTpm Application Server MultiXTpmApplicationServer-4.0.2d.zip
http://downloads.sourceforge.net/multixtpm/MultiXTpmApplicationServer- 4.0.2d.zip?modtime=1192820805&big_mirror=0
References
MultiXTpm Application Server DebugPrint() Remote Buffer Overflow Vulnerability
References:
References:
- MultiXTpm Application Server Home Page (MultiXTpm Application Server)
- Release Name: MultiXTpm Application Server 4.0.2d (MultiXTpm Application Server)