eIQnetworks Enterprise Security Analyzer EnterpriseSecurityAnalyzer.exe LICMGR_ADDLICENSE Command Remote Overflow

critical Nessus Plugin ID 22129

Synopsis

The remote host contains an application that is vulnerable to a remote buffer overflow attack.

Description

The version of eIQnetworks Enterprise Security Analyzer, Network Security Analyzer, or one of its OEM versions installed on the remote host contains a buffer overflow in its License Manager service. Using a long argument to the 'LICMGR_ADDLICENSE' command, an unauthenticated remote attacker may be able to leverage this issue to execute arbitrary code on the affected host with LOCAL SYSTEM privileges.

Solution

Upgrade to Enterprise Security Analyzer 2.1.14 / Network Security Analyzer 4.5.4 / OEM software 4.5.4 or later

See Also

https://www.zerodayinitiative.com/advisories/ZDI-06-024/

https://www.securityfocus.com/archive/1/441195/30/0/threaded

Plugin Details

Severity: Critical

ID: 22129

File Name: esa_licmgr_addlicenses_overflow.nasl

Version: 1.16

Type: remote

Agent: windows

Family: Windows

Published: 8/2/2006

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 7/25/2006

Exploitable With

Metasploit (eIQNetworks ESA Topology DELETEDEVICE Overflow)

Reference Information

CVE: CVE-2006-3838

BID: 19163

CWE: 119

Secunia: 21211