eIQnetworks Enterprise Security Analyzer License Manager < 2.5.9 Multiple Remote Overflows

Critical Nessus Plugin ID 25080


The remote host contains an application that is affected by multiple buffer overflow vulnerabilities.


The version of eIQnetworks Enterprise Security Analyzer installed on the remote host contains multiple buffer overflows in its License Manager service. Using long arguments to various commands, an unauthenticated, remote attacker may be able to leverage this issue to crash the affected service or possibly execute arbitrary code on the affected host with LOCAL SYSTEM privileges.


Upgrade to Enterprise Security Analyzer version 2.5.9 or later.

See Also




Plugin Details

Severity: Critical

ID: 25080

File Name: esa_licmgr_259.nasl

Version: $Revision: 1.15 $

Type: remote

Agent: windows

Family: Windows

Published: 2007/04/18

Modified: 2013/05/31

Dependencies: 22128

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 9

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:U/RC:ND

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2007/04/12

Reference Information

CVE: CVE-2007-2059

BID: 23454

OSVDB: 34920

Secunia: 24881