Now SMS/MMS Gateway < 2008.02.22 Multiple Remote Overflows
Critical Nessus Plugin ID 32481
SynopsisA remote Windows host contains a program that is affected by multiple buffer overflow vulnerabilities.
DescriptionThe remote host is running Now SMS/MMS Gateway, a tool for connecting to SMS and/or MMS messaging providers and managing GSM modems.
The web interface component of the version of Now SMS/MMS Gateway installed on the remote host contains a stack-based buffer overflow that can be triggered using a specially crafted HTTP Authorization request header. An unauthenticated, remote attacker can leverage this issue to crash the affected service or to execute arbitrary code on the affected host subject to the privileges under which the service operates, SYSTEM by default.
In addition, there is similar buffer overflow in the application's SMPP server, which allocates a stack buffer of 4 KB for incoming packets but fails to check their actual size. By default, though, this service is not enabled.
SolutionUpgrade to Now SMS/MMS Gateway version 2008.02.22 or later.