Description
Multiple buffer overflows in ASG-Sentry Network Manager 7.0.0 and earlier allow remote attackers to execute arbitrary code or cause a denial of service (crash) via (1) a long request to FxIAList on TCP port 6162, or (2) an SNMP request with a long community string to FxAgent on UDP port 6161.
Affected products
- asg / asg-sentry7.0.0
References
- MISChttp://www.securityfocus.com/bid/28188
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2008/0839/references
- MISChttp://securityreason.com/securityalert/3737
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/41082
- VENDOR_ADVISORYhttp://secunia.com/advisories/29289
- MISChttp://www.securityfocus.com/archive/1/489359/100/0/threaded
- EXPLOIThttps://www.exploit-db.com/exploits/5229
- MISChttp://aluigi.altervista.org/adv/asgulo-adv.txt
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/41086