BID:9750

Dell OpenManage Web Server POST Request Heap Overflow Vulnerability

Info

Dell OpenManage Web Server POST Request Heap Overflow Vulnerability

Bugtraq ID:	9750
Class:	Boundary Condition Error
CVE:	CVE-2004-0331
Remote:	Yes
Local:	No
Published:	Feb 26 2004 12:00AM
Updated:	Jul 12 2009 03:06AM
Credit:	Discovery of this vulnerability has been credited to "wirepair" <[email protected]>.
Vulnerable:	Dell OpenManage 3.7.1 Dell OpenManage 3.7 Dell OpenManage 3.4 Dell OpenManage 3.2

Not Vulnerable:

Discussion

Dell OpenManage Web Server POST Request Heap Overflow Vulnerability

Dell OpenManage Web Server has been reported prone to a remote heap overflow vulnerability. The issue presents itself due to a lack of sufficient bounds checks performed on POST request data.

A remote attacker may exploit this issue to corrupt heap based memory management structures located adjacent to the affected buffer.

Exploit / POC

Dell OpenManage Web Server POST Request Heap Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

Solution / Fix

Dell OpenManage Web Server POST Request Heap Overflow Vulnerability

Solution:
The vendor has released patches to address this issue.

Dell OpenManage 3.2

Dell SA_Security_Patch_LX_A01.tar.gz
Linux Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74030

Dell SA_Security_Patch_NW_A01.exe
Netware Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74031

Dell SA_Security_Patch_WIN_A01.exe
http://support.dell.com/filelib/exportcompliance.aspx?FileID=96563&Rel easeID=R74029&location=1&st=

Dell SA_Security_Patch_WIN_A01.exe
Microsoft Windows Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74029

Dell OpenManage 3.4

Dell SA_Security_Patch_LX_A01.tar.gz
Linux Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74030

Dell SA_Security_Patch_NW_A01.exe
Netware Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74031

Dell SA_Security_Patch_WIN_A01.exe
http://support.dell.com/filelib/exportcompliance.aspx?FileID=96563&Rel easeID=R74029&location=1&st=

Dell SA_Security_Patch_WIN_A01.exe
Microsoft Windows Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74029

Dell OpenManage 3.7

Dell SA_Security_Patch_LX_A01.tar.gz
Linux Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74030

Dell SA_Security_Patch_NW_A01.exe
Netware Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74031

Dell SA_Security_Patch_WIN_A01.exe
http://support.dell.com/filelib/exportcompliance.aspx?FileID=96563&Rel easeID=R74029&location=1&st=

Dell SA_Security_Patch_WIN_A01.exe
Microsoft Windows Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74029

Dell OpenManage 3.7.1

Dell SA_Security_Patch_LX_A01.tar.gz
Linux Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74030

Dell SA_Security_Patch_NW_A01.exe
Netware Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74031

Dell SA_Security_Patch_WIN_A01.exe
http://support.dell.com/filelib/exportcompliance.aspx?FileID=96563&Rel easeID=R74029&location=1&st=

Dell SA_Security_Patch_WIN_A01.exe
Microsoft Windows Platforms
http://support.dell.com/filelib/Format.aspx?ReleaseID=R74029

References

Dell OpenManage Web Server POST Request Heap Overflow Vulnerability

References:

Dell OpenManage Web Server Heap Overflow ("wirepair" )
Systems Management: Dell OpenManage Server Administrator Updates (Linux) (Dell)
Systems Management: Dell OpenManage Server Administrator Updates (Netware) (Dell)
Systems Management: Dell OpenManage Server Administrator Updates (Win) (Dell)
Systems Management: Dell OpenManage Server Administrator Updates, Patch, Windows (Dell)
Vendor Homepage (Dell)
Dell OpenManage Web Server Heap Overflow ("wirepair" )