MobiLink Server < 10.0.1 build 3649 mlsrv10.exe Multiple Remote Overflows

This script is Copyright (C) 2008-2011 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has a program that is prone to a buffer
overflow attack.

Description :

The version of the SQL Anywhere MobiLink Server installed on the
remote host reportedly is affected by a heap-based buffer overflow
when handling strings such as the username, version, and remote ID
longer than 128 bytes. An unauthenticated attacker may be able to
leverage this issue to execute arbitrary code on the affected system.

See also :

http://aluigi.altervista.org/adv/mobilinkhof-adv.txt
http://www.securityfocus.com/archive/1/archive/1/488409/100/0/threaded
http://www.securityfocus.com/archive/1/490259/30/0/threaded

Solution :

Upgrade to SQL Anywhere 10.0.1 build 3649 or later as that reportedly
addresses the issues.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Databases

Nessus Plugin ID: 31719 ()

Bugtraq ID: 27914

CVE ID: CVE-2008-0912