Main Menu
Network
Sponsor
Top 10 Sites
Partners
|
|
Top Submit newsSubscribe 
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
| Sponsored links | Want to become one of our authors and see your work published on ALLSeek.iNFO ?
| | Cfengine Buffer Overflow in 'cfservd' Lets Remote Users Execute Arbitrary Code |
|---|
Categorie: Vulnerability
Posted: 2003-09-27 by ReCall
Views: 394
Source: Click here
| Current Rating: Not rated
|
| | Details |
|---|
Description: A stack overflow vulnerability was reported in Cfengine in the 'cfservd' daemon. A remote user can execute arbitrary code on the target system.
It is reported that a remote user can connect to the cfservd daemon (typically on port 5308) and send a specially crafted packet to trigger the overflow. The RecvSocketStream() function reportedly attempts to read a potentially long message from the TCP socket and copy it into a 4096 byte stack buffer (recvbuffer[4096]). If the length of the message is greater than 4096 bytes, the return address of the BusyWithConnection() function can be overwritten, the report said.
The overflow reportedly occurs after the IP-based access control process, so the remote user must be on a host that is permitted by the target system's access control list (ACL), spoof an IP address that is permitted by the ACL, or relay a connection via a host that is permitted by the ACL.
The report indicates that arbitrary code execution has been confirmed on FreeBSD x86.
The report also states that the vulnerable code occurs in several places within Cfengine, so other similar flaws may exist.
Impact: A remote user on a "trusted" IP address can execute arbitrary code on the target system.
Solution: No solution was available at the time of this entry.
| | Syndication |
|---|
Permalink Email this
The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=482
| | User comments (post your comments ) |
|---|
Only registerd members can post comments and articles
|
| Previous articleBack to news listNext article
|
|
|
|
InterJOB.su
|
