Gauntlet Firewall and PGP e-ppliances from Network Associates Have Buffer Overflows that Let Remote Users Get User-Level Operating System Access on the Firewall - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Firewall) > Gauntlet

Vendors: Network Associates

Gauntlet Firewall and PGP e-ppliances from Network Associates Have Buffer Overflows that Let Remote Users Get User-Level Operating System Access on the Firewall

SecurityTracker Alert ID: 1002321

SecurityTracker URL: http://securitytracker.com/id/1002321

CVE Reference: GENERIC-MAP-NOMATCH (Links to External Site)

Date: Sep 5 2001

Impact: Execution of arbitrary code via network, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): Gauntlet for Unix versions 5.x, 6.0; PGP e-ppliance 300 series version 1.0, PGP e-ppliance 300 and 1000 series versions 1.5, 2.0

Description: Network Associates reported a vulnerability in their Gauntlet firewall. A buffer overflow allows a remote user to execute arbitrary code on the firewall and gain user-level access to the firewall's operating system.

A buffer overflow reportedly exists in the smap/smapd and CSMAP daemons. These daemons process SMTP-based e-mail transactions for both inbound and outbound e-mail. A remote user can trigger the buffer overflow and cause arbitrary shell commands to be executed on the firewall with the privileges of the daemon.

The security flaw apparently affects several Network Associates products.

The following products are reported to contain a vulnerability in the smap/smapd module:

Gauntlet for Unix versions 5.x
PGP e-ppliance 300 series version 1.0
McAfee e-ppliance 100 and 120 series

The following products are reported to contain a vulnerability in CSMAP:

Gauntlet for Unix version 6.0
PGP e-ppliance 300 series versions 1.5, 2.0
PGP e-ppliance 1000 series versions 1.5, 2.0
McAfee WebShield for Solaris v4.1

Impact: A remote user can gain user-level access to the operating system of the firewall.

Solution: The vendor has released a patch, available at: ftp://ftp.nai.com/pub/security/

Patches for the Gauntlet and PGP e-ppliance products are available at:
http://www.pgp.com/naicommon/download/upgrade/upgrades-patch.asp

Patches for the McAfee e-ppliance and WebShield products are available at:
http://www.mcafeeb2b.com/

The vendor notes that Gauntlet v.5.x users on HP-UX must install a certain HP patch. See the vendor's advisory (Vendor URL) for the details.

Vendor URL: www.pgp.com/support/product-advisories/csmap.asp (Links to External Site)

Cause: Boundary error

Underlying OS: UNIX (HP/UX), UNIX (Solaris - SunOS)

Message History: This archive entry has one or more follow-up message(s) listed below.

(SGI Issues Workaround) Re: Gauntlet Firewall and PGP e-ppliances from Network Associates Have Buffer Overflows that Let Remote Users Get User-Level Operating System Access on the Firewall ("SGI Security Coordinator" <agent99@sgi.com>)
SGI has issued a workaround. They will not be providing a patch, as they no longer offer Gauntlet as an SGI-supported product.

Source Message Contents


[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC