eEye Retina Wireless Scanner .rws Handling Buffer Overflow
High Nessus Plugin ID 39809
SynopsisThe network scanner installed on the remote Windows host has a buffer overflow vulnerability.
DescriptionThe version of Retina Wireless Scanner installed on the remote host has a local buffer overflow vulnerability. A remote attacker could exploit this issue by tricking a user into opening a malformed .rws file. This could cause the program to crash or possibly result in the execution of arbitrary code.
Note that while Retina Wireless Scanner comes included with Retina Network Security Scanner, it can also be installed as a standalone application.
SolutionEither upgrade to Retina Network Security Scanner 5.10.15 or later or Retina WiFi Scanner (standalone) 1.0.9 or later.