Pointdev IDEAL Migration & IDEAL Administration '.ipj' File Stack Buffer Overflow Vulnerability

Bugtraq ID:	39729
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Apr 27 2010 12:00AM
Updated:	Feb 22 2012 09:00PM
Credit:	Dr_IDE
Vulnerable:	Pointdev IDEAL Migration 4.5.1 Pointdev IDEAL Administration 9.7 Pointdev IDEAL Administration 11.4 Pointdev IDEAL Administration 10.2
Not Vulnerable:	Pointdev IDEAL Migration 5.2

Pointdev IDEAL Migration & IDEAL Administration '.ipj' File Stack Buffer Overflow Vulnerability

Pointdev IDEAL Migration & IDEAL Administration are prone to a stack-based buffer-overflow vulnerability because the applications fail to perform adequate boundary checks on user-supplied data.

Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

IDEAL Migration 4.5.1 and IDEAL Administration 9.7 and 10.2 are vulnerable; other versions may also be affected.

Pointdev IDEAL Migration & IDEAL Administration '.ipj' File Stack Buffer Overflow Vulnerability

The following exploits are available:

• /data/vulnerabilities/exploits/39729.py
• /data/vulnerabilities/exploits/39729-2.rb
• /data/vulnerabilities/exploits/39729-3.rb
• /data/vulnerabilities/exploits/39729-4.py

Pointdev IDEAL Migration & IDEAL Administration '.ipj' File Stack Buffer Overflow Vulnerability

Solution:
Updates are available; please see the references for more information.

Pointdev IDEAL Migration & IDEAL Administration '.ipj' File Stack Buffer Overflow Vulnerability

References:

• Vendor Homepage (Pointdev)