Signature Detail
Short Name |
SHELLCODE:ACTIVE:DCDR-1-TCP-CTS |
|---|---|
Severity |
Critical |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
SHELLCODE |
Keywords |
Decoder Loop 1 (TCP-CTS) |
Release Date |
2010/10/20 |
Update Number |
1795 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SHELLCODE: Decoder Loop 1 (TCP-CTS)
This signature detects a known malicious shellcode decoder. Decoders are used to hide malicious shellcode from detection.
Extended Description
The Bopup Communication Server is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of the affected server. Successful attacks will compromise the server and possibly the underlying computer. Failed attacks will likely cause denial-of-service conditions. Bopup Communication Server 3.2.26.5460 is vulnerable; other versions may also be affected.
Affected Products
- B Labs Bopup Communication Server 3.2.26.5460
References
- BugTraq: 43836
- CVE: CVE-2009-2227
- CVE: CVE-2008-1491