IEA Products Web Administration Server Memory Corruption Vulnerability


Description   A vulnerability has been identified in various IEA products, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system. This issue is caused by a memory corruption error in the web administration server when processing HTTP requests with a negative "Content-Length" value, which could be exploited by remote attackers to crash an affected application or execute arbitrary code.
     
Vulnerable Products   Vulnerable Software:
IEA Emerald version 5.0.49 and priorIEA RadiusNT version 5.1.38 and priorRadiusX version 5.1.38 and priorIEA Radius test client (Radlogin) version 4.0.20 and priorIEA Air Marshal version 2.0.4 and prior
     
Solution  
     
CVE   CVE-2008-5284
     
References   http://aluigi.altervista.org/adv/emerdal-adv.txt
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
Invalid HTTP protocol
3.2.0
     


 
 
 
 
 Risk level 
High 

 Vulnerability First Public Report Date 
2008-02-11 

 Target Type 
Server 

 Possible exploit 
Local & Remote