Signature Detail
Short Name |
APP:NETSUPPORT-MANAGER-BO |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
NetSupport Manager Client Buffer Overflow |
Release Date |
2011/07/25 |
Update Number |
1960 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: NetSupport Manager Client Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the NetSupport Manager client daemon process. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
NetSupport Manager is prone to a buffer-overflow vulnerability because it fails to properly validate user-supplied input. Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts will likely result in denial-of-service conditions. The issue affects the following: NetSupport Manager 11.00 (for Linux) NetSupport Manager 9.50 (for Solaris) NetSupport Manager 11.00 (for Mac OS X) Prior versions may also be affected.
Affected Products
- NetSupport NetSupport Manager 10.50.0
- NetSupport NetSupport Manager 11.00
- NetSupport NetSupport Manager 9.50
References
- BugTraq: 45728
- CVE: CVE-2011-0404