DriveLock < 22.214.171.1244 Agent Version Detection
Medium Nessus Network Monitor Plugin ID 4224
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionDriveLock is a software security product that can control physical access to computer resources. The remote host is running a DriveLock agent.
This version of DriveLock is vulnerable to a remote buffer overflow. An attacker exploiting this flaw would only need to be able to send a very long string to the HTTP server listening on port 6061. Successful exploitation would result in the attacker executing arbitrary code on the remote machine.
SolutionUpgrade to version 126.96.36.1994 or higher.