Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0270

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2009-0270
Last Modified 07 Mar 2011 10:18:12
Published 26 Jan 2009 02:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-0270

Summary

Stack-based buffer overflow in PXEService.exe in Fujitsu SystemcastWizard Lite 2.0A, 2.0, 1.9, and earlier allows remote attackers to execute arbitrary code via a large PXE protocol request in a UDP packet.

Vulnerable Systems

Application

  • Fujitsu Systemcastwizard Lite 1.7

  • Fujitsu Systemcastwizard Lite 1.8

  • Fujitsu Systemcastwizard Lite 1.8a

  • Fujitsu Systemcastwizard Lite 1.9

  • Fujitsu Systemcastwizard Lite 2.0

  • Fujitsu Systemcastwizard Lite 2.0a


References

CONFIRM - http://www.fujitsu.com/global/services/computing/server/primequest/products/os/windows-server-2008-2.html

MISC - http://www.wintercore.com/advisories/advisory_W010109.html

VUPEN - ADV-2009-0176

BID - 33342

BUGTRAQ - 20090119 [Wintercore Research ] Fujitsu SystemcastWizard Lite PXEService Remote Buffer Overflow.

SECUNIA - 33594

OSVDB - 51486


Last Updated: 27 May 2016 10:50:10