NetSupport Manager Remote Buffer Overflow Vulnerability Network Vulnerability

Summary

The host is running NetSupport Manager and is prone to buffer overflow vulnerability.

Impact

Successful exploitation will allow attacker to crash an affected daemon or execute arbitrary code. Impact Level: System/Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

Insight

The flaw is caused by a buffer overflow error when processing packets sent to port 5405/TCP, which could be exploited by remote unauthenticated attackers to crash an affected daemon or execute arbitrary code.

Affected

NetSupport Manager Agent 11.00 on Linux.

References

http://secunia.com/advisories/42794
http://www.exploit-db.com/exploits/15937
http://www.ikkisoft.com/stuff/netsupport_linux.txt
http://www.securitytracker.com/id?1024943

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0404
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Adobe Reader 'XFDF' File Buffer Overflow Vulnerability (Mac OS X)
Adobe Flash Professional JPG Object Processing BOF Vulnerability (Windows)
Adobe Audition '.ses' Multiple Buffer Overflow Vulnerabilities (Windows)
CCProxy CONNECTION Request Buffer Overflow Vulnerability
Anzio Web Print Object ActiveX Control Remote BOF Vulnerability

Take action and discover your vulnerabilities