AgentX++ 'AgentX::receive_agentx()' Remote Stack Buffer Overflow Vulnerability
BID:39564
Info
AgentX++ 'AgentX::receive_agentx()' Remote Stack Buffer Overflow Vulnerability
| Bugtraq ID: | 39564 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2010-1318 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 16 2010 12:00AM |
| Updated: | May 10 2010 09:02AM |
| Credit: | Manuel Santamarina Suarez working with iDefense Labs |
| Vulnerable: |
RealNetworks Helix Server 13.0 RealNetworks Helix Server 12.0.1 .215 RealNetworks Helix Server 12.0.1 RealNetworks Helix Server 12.0 RealNetworks Helix Server 11.1.8 RealNetworks Helix Server 11.1.7 RealNetworks Helix Server 11.1.6 RealNetworks Helix Server 11.1.4 RealNetworks Helix Server 11.1.2 RealNetworks Helix Mobile Server 13.0 RealNetworks Helix Mobile Server 12.0.1 .215 RealNetworks Helix Mobile Server 12.0.1 RealNetworks Helix Mobile Server 12.0 RealNetworks Helix Mobile Server 11.1.8 RealNetworks Helix Mobile Server 11.1.7 RealNetworks Helix Mobile Server 11.1.6 RealNetworks Helix Mobile Server 11.1.4 RealNetworks Helix Mobile Server 11.1.2 Frank Fock AgentX++ 1.4.16 Frank Fock AgentX++ 1.4 |
| Not Vulnerable: |
RealNetworks Helix Server 14.0 RealNetworks Helix Mobile Server 14.0 |
Discussion
AgentX++ 'AgentX::receive_agentx()' Remote Stack Buffer Overflow Vulnerability
AgentX++ is prone to a remote stack-based buffer-overflow vulnerability.
Exploiting this issue can allow attackers to execute arbitrary code within the context of the user running the AgentX master process; in some cases the superuser may be the owner of the process. Failed attempts may cause crashes and deny service to legitimate users.
AgentX++ 1.4.16 is vulnerable; other versions may also be affected. In addition, these issues affect versions prior to Helix Server and Helix Mobile Server 14.0.
NOTE: This issue was previously covered in BID 39490 (RealNetworks Helix and Helix Mobile Server Multiple Remote Code Execution Vulnerabilities) but has been given its own record to better document it.
AgentX++ is prone to a remote stack-based buffer-overflow vulnerability.
Exploiting this issue can allow attackers to execute arbitrary code within the context of the user running the AgentX master process; in some cases the superuser may be the owner of the process. Failed attempts may cause crashes and deny service to legitimate users.
AgentX++ 1.4.16 is vulnerable; other versions may also be affected. In addition, these issues affect versions prior to Helix Server and Helix Mobile Server 14.0.
NOTE: This issue was previously covered in BID 39490 (RealNetworks Helix and Helix Mobile Server Multiple Remote Code Execution Vulnerabilities) but has been given its own record to better document it.
Exploit / POC
AgentX++ 'AgentX::receive_agentx()' Remote Stack Buffer Overflow Vulnerability
An exploit is available.
An exploit is available.
Solution / Fix
AgentX++ 'AgentX::receive_agentx()' Remote Stack Buffer Overflow Vulnerability
Solution:
Updates are available. RealNetworks released Helix Server and Helix Mobile Server 14.0 to address this issue. Please see the references for more information.
Solution:
Updates are available. RealNetworks released Helix Server and Helix Mobile Server 14.0 to address this issue. Please see the references for more information.
References
AgentX++ 'AgentX::receive_agentx()' Remote Stack Buffer Overflow Vulnerability
References:
References:
- AgentX++ Homepage (Frank Fock)
- Multiple Vendor AgentX++ Stack Buffer Overflow Vulnerability (iDefense Labs)
- Real Networks Helix Server Homepage (Real Networks)
- iDefense Security Advisory 04.15.10: Multiple Vendor AgentX++ Stack Buffer Overf (iDefense Labs
- RealNetworks is making available product upgrades that contain security bug fixe (Real Networks)