EMC AutoStart CVE-2012-0409 Multiple Buffer Overflow Vulnerabilities
BID:53682
Info
EMC AutoStart CVE-2012-0409 Multiple Buffer Overflow Vulnerabilities
| Bugtraq ID: | 53682 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2012-0409 |
| Remote: | Yes |
| Local: | No |
| Published: | May 24 2012 12:00AM |
| Updated: | Aug 22 2012 07:00PM |
| Credit: | gwslabs.com working with TippingPoint's Zero Day Initiative |
| Vulnerable: |
EMC AutoStart 5.4.1 EMC AutoStart 5.4 EMC AutoStart 5.3 |
| Not Vulnerable: |
EMC AutoStart 5.4.3 |
Discussion
EMC AutoStart CVE-2012-0409 Multiple Buffer Overflow Vulnerabilities
EMC AutoStart is prone to multiple buffer-overflow vulnerabilities.
An attacker can exploit these issues to execute arbitrary code in the context of the user running the affected application. Failed attempts may lead to a denial-of-service condition.
EMC AutoStart is prone to multiple buffer-overflow vulnerabilities.
An attacker can exploit these issues to execute arbitrary code in the context of the user running the affected application. Failed attempts may lead to a denial-of-service condition.
Exploit / POC
EMC AutoStart CVE-2012-0409 Multiple Buffer Overflow Vulnerabilities
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
EMC AutoStart CVE-2012-0409 Multiple Buffer Overflow Vulnerabilities
Solution:
The vendor has released an update. Please see the references for details.
Solution:
The vendor has released an update. Please see the references for details.
References
EMC AutoStart CVE-2012-0409 Multiple Buffer Overflow Vulnerabilities
References:
References:
- AutoStart Homepage (EMC)
- ESA-2012-020: EMC AutoStart Multiple Buffer Overflow Vulnerabilities ([email protected])
- EMC AutoStart ftAgent Opcode 0x03 Parsing Remote Code Execution Vulnerability (HP)
- EMC AutoStart ftAgent Opcode 0x14 Subcode 0x7e7 Parsing Remote Code Execution Vu (HP)
- EMC AutoStart ftAgent Opcode 0x14 Subcode 0x7F8 Parsing Remote Code Execution Vu (HP)
- EMC AutoStart ftAgent Opcode 0x2d Subcode 0x1194 Parsing Remote Code Execution V (HP)
- EMC AutoStart ftAgent Opcode 0x41 Subcode 0x00 Parsing Remote Code Execution Vul (HP)
- EMC AutoStart ftAgent Opcode 0x4B Subcode 0x1D4C Parsing Remote Code Execution V (HP)
- EMC AutoStart ftAgent Opcode 50 Parsing Remote Code Execution Vulnerability (HP)
- EMC AutoStart ftAgent Opcode 50 Subcode 04 Parsing Remote Code Execution Vulnera (HP)
- EMC AutoStart ftAgent Opcode 50 Subcode 42 Parsing Remote Code Execution Vulnera (HP)
- EMC AutoStart ftAgent Opcode 50 Subcode 60 Parsing Remote Code Execution Vulnera (HP)
- EMC AutoStart ftAgent Opcode 65 Parsing Remote Code Execution Vulnerability (HP)
- EMC AutoStart ftAgent Opcode 85 Subcode 01 Parsing Remote Code Execution Vulnera (HP)
- EMC AutoStart ftAgent Opcode 85 Subcode 22 Parsing Remote Code Execution Vulnera (HP)