Detections
Analytics
IS Decisions RemoteExec '.rec' Remote Buffer Overflow
high Nessus Plugin ID 45087
Language:
Synopsis
The remote host is running a computer-management application that is affected by a buffer overflow vulnerability.Description
The remote host is running IS Decisions RemoteExec, a computer- management application.The installed version is earlier than 4.0.5. Such versions are potentially affected by a buffer overflow vulnerability when processing specially crafted '.rec' files.
An attacker, exploiting this flaw, could potentially execute arbitrary code subject to the privileges of the user running the affected application.
Solution
Upgrade to IS Decisions RemoteExec 4.0.5 or later.See Also
http://www.nessus.org/u?ab1d3b77
https://www.isdecisions.com/products/remoteexec/technical-resources.htm#History
Plugin Details
Severity: High
ID: 45087
File Name: isdecisions_remoteexec_4_0_5.nasl
Version: 1.9
Type: local
Agent: windows
Family: Windows
Published: 3/18/2010
Updated: 11/15/2018
Supported Sensors: Nessus Agent, Nessus
Risk Information
CVSS v2
Risk Factor: High
Base Score: 7.6
Temporal Score: 5.6
Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C
Vulnerability Information
Required KB Items: SMB/Registry/Enumerated
Exploit Ease: No known exploits are available
Patch Publication Date: 3/16/2010
Vulnerability Publication Date: 3/16/2010
Reference Information
BID: 38763
Secunia: 38733