Netop Remote Control dws File Handling Overflow

This script is Copyright (C) 2012-2017 Tenable Network Security, Inc.


Synopsis :

There is an application installed on the remote host that is affected
by a buffer overflow vulnerability.

Description :

Netop Remote Control Guest is installed on the remote Windows host
and is less than version 10.0 build 2011087. As such, it reportedly
has a flaw in handling '.dws' script files that can be utilized to
trigger a buffer overflow.

By tricking the user into opening a specially crafted '.dws' file, a
remote attacker may be able to execute arbitrary code subject to the
user's privileges.

See also :

http://www.nessus.org/u?a9f113fa

Solution :

Upgrade to Netop Remote Control Guest 10.0 build 2011087 or greater.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.8
(CVSS2#E:F/RL:U/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 58769 ()

Bugtraq ID: 47631

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now