CVE-2006-3838

Vulnerability Description

Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) before 2.5.0, as used in products including (a) Sidewinder, (b) iPolicy Security Manager, (c) Astaro Report Manager, (d) Fortinet FortiReporter, (e) Top Layer Network Security Analyzer, and possibly other products, allow remote attackers to execute arbitrary code via long (1) DELTAINTERVAL, (2) LOGFOLDER, (3) DELETELOGS, (4) FWASERVER, (5) SYSLOGPUBLICIP, (6) GETFWAIMPORTLOG, (7) GETFWADELTA, (8) DELETERDEPDEVICE, (9) COMPRESSRAWLOGFILE, (10) GETSYSLOGFIREWALLS, (11) ADDPOLICY, and (12) EDITPOLICY commands to the Syslog daemon (syslogserver.exe); (13) GUIADDDEVICE, (14) ADDDEVICE, and (15) DELETEDEVICE commands to the Topology server (Topology.exe); the (15) LICMGR_ADDLICENSE command to the License Manager (EnterpriseSecurityAnalyzer.exe); the (16) TRACE and (17) QUERYMONITOR commands to the Monitoring agent (Monitoring.exe); and possibly other vectors related to the Syslog daemon (syslogserver.exe).

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://archive.cert.uni-stuttgart.de/bugtraq/2006/08/msg00152.html
• http://secunia.com/advisories/21211Vendor Advisory
• http://secunia.com/advisories/21213Vendor Advisory
• http://secunia.com/advisories/21214Vendor Advisory
• http://secunia.com/advisories/21215Vendor Advisory
• http://secunia.com/advisories/21217Vendor Advisory
• http://secunia.com/advisories/21218Vendor Advisory
• http://securitytracker.com/id?1016580
• http://www.eiqnetworks.com/products/enterprisesecurity/EnterpriseSecurityAnalyze
• http://www.kb.cert.org/vuls/id/513068US Government Resource
• http://www.osvdb.org/27525
• http://www.osvdb.org/27526
• http://www.osvdb.org/27527
• http://www.osvdb.org/27528
• http://www.securityfocus.com/archive/1/441195/100/0/threaded