Detections
Analytics

DriveLock < 5.0.0.314 Agent Version Detection

medium Nessus Network Monitor Plugin ID 4224

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

DriveLock is a software security product that can control physical access to computer resources. The remote host is running a DriveLock agent.
This version of DriveLock is vulnerable to a remote buffer overflow. An attacker exploiting this flaw would only need to be able to send a very long string to the HTTP server listening on port 6061. Successful exploitation would result in the attacker executing arbitrary code on the remote machine.

Solution

Upgrade to version 5.0.0.314 or higher.

See Also

http://www.drivelock.de

Plugin Details

Severity: Medium

ID: 4224

Family: Generic

Published: 10/3/2007

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.9

Vector: CVSS2#AV:A/AC:L/Au:N/C:P/I:P/A:P

CVSS v3

Risk Factor: Medium

Base Score: 6.3

Temporal Score: 5.8

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:U/RL:U/RC:X

Vulnerability Information

CPE: cpe:/a:centertools:drivelock

Reference Information

CVE: CVE-2007-5209

BID: 25902