Summary
This host is installed with MOXA Device Manager and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code.
Impact Level: Application.
Solution
Upgrade to the Moxa Device Manager version 2.3 or later, For updates refer to http://www.moxa.com/support/download.aspx?d_id=2669
Insight
The flaw is due to a stack-based buffer overflow error in 'strcpy()' function in 'MDMUtil.dll' within MDM Tool.
Affected
Moxa Device Manager version prior to 2.3
References
Severity
Classification
-
CVE CVE-2010-4741 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Beatport Player '.m3u' File Buffer Overflow Vulnerability
- Alleycode HTML Editor Buffer Overflow Vulnerabilities
- Adobe InDesign 'INDD' File Handling Remote Buffer Overflow Vulnerability
- Audacity Buffer Overflow Vulnerability (Linux)
- Cyrus IMAP Server 'split_wildmats()' Remote Buffer Overflow Vulnerability