|
 |
|
McAfee ePolicy Orchestrator Format String Vulnerability
|
|
|
|
|
Secunia Advisory:
|
SA8311
|
|
|
Release Date:
|
2003-03-17
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
DoS
System access
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | McAfee ePolicy Orchestrator 2.x
|
| | CVE reference: | CVE-2002-0690 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
A format string vulnerability identified in ePolicy Orchestrator can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused by an input validation error in the ePolicy Orchestrator Agent service when handling HTTP GET requests. A malicious person can exploit the vulnerability by sending a specially crafted HTTP GET request containing format string characters to the ePolicy Orchestrator Agent service (default on port 8081/tcp), which results in execution of arbitrary code with SYSTEM privileges.
Solution:
Contact vendor to acquire patch.
Access to the service is not authenticated and may also reveal sensitive system information. Traffic to the service should therefore be filtered allowing only trusted machines on a local network to connect to the service.
Provided and/or discovered by:
Ollie Whitehouse, @stake
Original Advisory:
http://www.atstake.com/research/advisories/2003/a031703-1.txt
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
3 Related Secunia Security Advisories
|
|
|
1. McAfee ePolicy Orchestrator HTTP POST Request Handling Vulnerability
|
|
2. McAfee ePolicy Orchestrator Invalid "Content-Length:" Denial of Service
|
|
3. McAfee ePolicy Orchestrator Multiple Vulnerabilities
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
