SkyStream Networks Edge Media Router (EMR-5000) Command Shell Buffer Overflow Lets Remote Authenticated Users Gain Root Privileges
|
|
SecurityTracker Alert ID: 1005862 |
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Dec 27 2002
|
Impact: Execution of arbitrary code via network, Root access via network
|
Advisory: Global InterSec Research
|
Version(s): EMR-5000; 1.16, 1.17, 1.18
|
Description: A vulnerability was reported in the SkyStream Edge Media Router 5000 (EMR-5000). A remote authenticated user may be able to gain root privileges the device.
Global InterSec reported that there is a buffer overflow in the processing of user-supplied input in the shell. A remote authenticated
user can connect via telnet and trigger the overflow to execute arbitrary code with root privileges. According to the report, a
1052 byte command line entry can be used to demonstrate the flaw and will result in a segmentation fault.
The vendor has reportedly
been notified.
The original advisory is available at:
http://www.globalintersec.com/adv/skystream-2002101601.txt
|
Impact: A remote authenticated user can execute arbitrary code on the system with root privileges.
|
Solution: No solution was available at the time of this entry. The author of the report indicates that you can disable the telnet server daemon or only permit telnet access from trusted subnetworks as a workaround.
|
Vendor URL: www.skystream.com/products/emr5000.stm (Links to External Site)
|
Cause: Boundary error
|
Reported By: Global InterSec Research <research@globalintersec.com>
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
