SIDVault 'simple_bind()' Function Multiple Remote Buffer Overflow Vulnerabilities Network Vulnerability

Summary

SIDVault is prone to multiple remote buffer-overflow vulnerabilities because the application fails to properly bounds- check user-supplied input before copying it to an insufficiently sized memory buffer. An attacker can exploit these issues to execute arbitrary code with superuser privileges. Successfully exploiting these issues will result in the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition. These issues affect versions prior to SIDVault 2.0f.

Solution

The vendor released SIDVault 2.0f to address this issue. Please see the references for more information.

References

http://www.securityfocus.com/archive/1/477821
http://www.securityfocus.com/bid/25460

Updated on 2017-03-28

Severity

Classification

CVE CVE-2007-4566
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Audition '.ses' Multiple Buffer Overflow Vulnerabilities (Windows)
BreakPoint Software, Hex Workshop Buffer Overflow vulnerability
Adobe Flash Player Buffer Overflow Vulnerability (Mac OS X)
Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability
Adobe Flash Professional JPG Object Processing BOF Vulnerability (Windows)

Take action and discover your vulnerabilities