Computer Security
[EN] securityvulns.ru no-pyccku


EIQ Networks Network Security Analyzer DoS
Published:11.01.2007
Source:
SecurityVulns ID:7038
Type:remote
Threat Level:
5/10
Description:Crash on malformed command to TCP/10618 port.
Affected:EIQNETWORKS : eIQnetworks Enterprise Security Analyzer 2.5
CVE:CVE-2007-0228 (The DataCollector service in EIQ Networks Network Security Analyzer allows remote attackers to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) &LOGPATH& (6) &FWADELTA& (7) &FWALOG& (8) &SETSYNCHRONOUS& (9) &SETPRGFILE&, or (10) &SETREPLYPORT& string to TCP port 10618, which triggers a NULL pointer dereference.)
Original documentdocumentEthan Hunt, [Full-disclosure] EIQ Networks Network Security Analyzer DoS Vulnerability (11.01.2007)
Files:Exploits EIQ Networks Network Security Analyzer DoS

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod