|
McAfee ePolicy Orchestrator Invalid "Content-Length:" Denial of Service
|
|
|
|
|
Secunia Advisory:
|
SA10742
|
|
|
Release Date:
|
2004-01-29
|
|
Last Update:
|
2004-02-02
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
DoS
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | McAfee ePolicy Orchestrator 2.x
McAfee ePolicy Orchestrator 3.x
|
| | CVE reference: | CVE-2004-0095 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
cyber_flash has identified a vulnerability in McAfee ePolicy Orchestrator, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to a handling error in the Orchestrator Agent when processing certain HTTP traffic. This can be exploited to crash the agent by sending a specially crafted HTTP POST request containing an invalid value in the "Content-Length:" header.
Some reports indicate that this potentially could be exploited to execute code on an affected system due to a buffer overflow, but this is currently unconfirmed.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Apply patches.
Patch 3 for ePolicy Orchestrator Agent 3.0 SP1:
http://download.nai.com/products/patches/ePO/v3.1.0/EPO3013.zip
Patch 13 for version 2.5.1:
http://download.nai.com/products/patches/ePO/v2.x/EPO25113.Zip
Provided and/or discovered by:
cyber_flash
Changelog:
2004-02-02: Vulnerability also affects version 2.5.1. Patch released.
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
10 Related Secunia Security Advisories
|
|
|
1. McAfee Common Management Agent Framework Service Denial of Service
|
|
2. McAfee ePolicy Orchestrator Framework Service Format String Vulnerability
|
|
3. McAfee ePolicy Orchestrator / ProtectionPilot Common Management Agent Vulnerabilities
|
|
4. McAfee ePolicy Orchestrator / ProtectionPilot ActiveX Control Buffer Overflows
|
|
5. McAfee ePolicy Orchestrator / ProtectionPilot Source Header Buffer Overflow
|
|
6. McAfee ePolicy Orchestrator Directory Traversal Vulnerability
|
|
7. ePolicy Orchestrator / ProtectionPilot Insecure Directory Permissions
|
|
8. McAfee ePolicy Orchestrator HTTP POST Request Handling Vulnerability
|
|
9. McAfee ePolicy Orchestrator Multiple Vulnerabilities
|
|
10. McAfee ePolicy Orchestrator Format String Vulnerability
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
