|
Diskeeper RPC Request Handling Information Disclosure and Denial of Service
|
|
Secunia Advisory:
|
SA26431
|
|
|
Release Date:
|
2007-08-14
|
|
Last Update:
|
2007-08-22
|
|
Popularity:
|
4,076 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Exposure of system information
DoS
|
|
Where:
|
From local network
|
|
Solution Status:
|
Unpatched
|
|
| Software: | Diskeeper 10.x
Diskeeper 2007 11.x
Diskeeper 9.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2007-4375
|
|
Description:
Pravus has discovered two vulnerabilities in Diskeeper, which can be exploited by malicious people to cause a DoS (Denial of Service) or disclose certain system information.
The vulnerabilities are caused due to input validation errors within the Diskeeper service (DkService.exe) when handling arguments passed to RPC requests with opcode 0x01. These can be exploited to crash the service or gain knowledge of certain system information (e.g. Windows version, address of loaded modules) via a specially crafted RPC request sent to default port 31038/TCP.
The vulnerabilities are confirmed in Diskeeper 2007 - ProPremier and reportedly affects Diskeeper 9 Professional. Other versions may also be affected.
Solution:
Restrict access to the service.
Provided and/or discovered by:
Pravus
Changelog:
2007-08-22: Added CVE reference.
Original Advisory:
http://lists.grok.org.uk/pipermail/full-disclosure/2007-August/065245.html
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
