Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5252

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-5252
Last Modified 05 Sep 2008 05:30:16
Published 06 Oct 2007 01:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5252

Summary

Buffer overflow in NetSupport Manager (NSM) Client 10.00 and 10.20, and NetSupport School Student (NSS) 9.00, allows remote NSM servers to cause a denial of service or possibly execute arbitrary code via crafted data in the configuration exchange phase of an initial connection setup. NOTE: a vendor statement, which is too vague to be sure that it is for this particular issue, says that only a denial of service is possible.

Vulnerable Systems

Application

  • Netsupport Manager Client 10.00

  • Netsupport Manager Client 10.20

  • Netsupport School Student 9.00


References

BID - 25932

MISC - http://www.netsupportsoftware.com/support/td.asp?td=545&Site=nsltd&Lang=

XF - netsupport-unspecified-dos(36963)

SECTRACK - 1018774

BUGTRAQ - 20071004 DDIVRT-2007-05 NetSupport Manager Client Buffer Overflow

SREASON - 3198

SECUNIA - 27082


Last Updated: 27 May 2016 10:46:07