SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Server/CGI)  >   Dell OpenManage Vendors:   Dell
Dell OpenManage Server Heap Overflow May Let Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1009233
SecurityTracker URL:  http://securitytracker.com/id/1009233
CVE Reference:   CVE-2004-0331   (Links to External Site)
Updated:  Mar 23 2004
Original Entry Date:  Feb 27 2004
Impact:   Denial of service via network, Execution of arbitrary code via network, User access via network

Version(s): 3.7.0, possibly others
Description:   A buffer overflow vulnerability was reported in the Dell OpenManage Server. A remote user may be able to execute arbitrary code on the target system.

wirepair reported that a remote user can send a specially crafted HTTP POST request to the target server on TCP port 1311 (default port). If the POST request contains a hidden variable with a value that is a long string, the target server will reportedly attempt to open an 'ini' file based on the user-supplied string. Because the length of the user-supplied input is not validated, a remote user can overwrite the heap with arbitrary data, the report said.

The vendor has reportedly been notified.

The original advisory, including some descriptions of Dell's initial responses, is available at:

http://sh0dan.org/files/domadv.txt

Impact:   A remote user can cause the target service to crash and may be able to execute arbitrary code on the target system.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.dell.com/ (Links to External Site)
Cause:   Boundary error

Message History:   This archive entry has one or more follow-up message(s) listed below.
Mar 4 2004 (Vendor Issues Fix) Dell OpenManage Server Heap Overflow May Let Remote Users Execute Arbitrary Code
The vendor has issued a fix.



 Source Message Contents

Subject:  Dell OpenManage Web Server Heap Overflow


lo all,
I put this on my site a few days ago no one picked it up. Dell certainly didn't:
http://sh0dan.org/files/domadv.txt
-wire
--
Visit Things From Another World for the best
comics, movies, toys, collectibles and more.
http://www.tfaw.com/?qt=wmf

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC