Sentinel License Manager lservnt Service Remote Buffer Overflow

Critical Nessus Plugin ID 17326


The remote service is subject to a buffer overflow attack.


The remote host is running a version of Sentinel License Manager that is subject to remote buffer overflows. By sending 3000 bytes or more to the UDP port on which it listens (5093 by default), a remote attacker can crash the LServnt.exe service, overwrite the EIP register, and possibly execute arbitrary code.


Upgrade to Sentinel License Manager 8.0.0 or later as that reportedly addresses the issue.

See Also

Plugin Details

Severity: Critical

ID: 17326

File Name: sentinel_overflow.nasl

Version: $Revision: 1.18 $

Type: remote

Published: 2005/03/15

Modified: 2016/11/03

Dependencies: 17975

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 9.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:ND/RC:ND

Vulnerability Information

Required KB Items: Settings/ParanoidReport

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2005/03/07

Exploitable With

Metasploit (SentinelLM UDP Buffer Overflow)

Reference Information

CVE: CVE-2005-0353

BID: 12742

OSVDB: 14605

CERT: 108790