Family: Gain root remotely --> Category: denial
eIQnetworks Enterprise Security Analyzer Monitoring Agent Command Argument Buffer Overflow Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Tries to crash ESA monitoring agent with a long argument to QUERYMONITOR
Detailed Explanation for this Vulnerability Test
The remote host contains an application that is vulnerable to a remote
buffer overflow attack.
The version of eIQnetworks Enterprise Security Analyzer, Network
Security Analyzer, or one of its OEM versions installed on the remote
host contains a buffer overflow in its Monitoring Agent service.
Using a long argument to a command, an unauthenticated remote attacker
may be able to leverage this issue to execute arbitrary code on the
affected host with LOCAL SYSTEM rights.
See also :
Upgrade to Enterprise Security Analyzer 2.1.14 / Network Security
Analyzer 4.5.4 / OEM software 4.5.4 or later.
Critical / CVSS Base Score : 10
Click HERE for more information and discussions on this network vulnerability scan.