Signature Detail

APP: LANDesk Management Suite QIP Service Heal Packet Buffer Overflow

There exists a memory corruption vulnerability in LANDesk QIP service. The vulnerability is due to insufficient validation when processing specially crafted In case of a successful exploitation, the attacker can inject and execute arbitrary code with the privileges of the affected service, normally In the case of an unsuccessful code execution attack, the service will be terminated due to memory corruption, causing Denial of Service.

Extended Description

LANDesk Intel QIP Service is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. Successful exploits may allow an attacker to execute arbitrary code with SYSTEM-level privileges. This will result in a complete compromise of vulnerable computers. Failed exploit attempts will likely result in denial-of-service conditions. This issue affects the following: LANDesk Management Suite 8.8 and earlier LANDesk Security Suite 8.8 and earlier LANDesk Server Manager 8.8 and earlier

Affected Products

• LANDesk Software LANDesk Management Suite 7.0.0
• LANDesk Software LANDesk Management Suite 8.0.0
• LANDesk Software LANDesk Management Suite 8.7
• LANDesk Software LANDesk Management Suite 8.8
• LANDesk Software LANDesk Management Suite 8.80.1.1
• LANDesk Software LANDesk Security Suite 8.7
• LANDesk Software LANDesk Security Suite 8.8
• LANDesk Software LANDesk Server Manager 8.7
• LANDesk Software LANDesk Server Manager 8.8

References

• BugTraq: 31193
• CVE: CVE-2008-2468