J-Security Center

Latest Attack Object Updates
  • IDP Daily Update #1545
    posted: 11/19/09
  • NSM Daily Update #1545
    posted: 11/19/09
  • Deep Inspection 5.3r5 and above, 5.4, 6.0 #1545
    posted: 11/19/09
  • Deep Inspection 5.1 and 5.2 #1435
    posted: 11/19/09
  • Deep Inspection 5.0, 5.3r4 and below #1132
    posted: 03/28/08 (04/01/08 for 5.0)
  • Antivirus
    posted: 11/19/09

Title: ActivePost Messenger Multiple Remote Vulnerabilities

Severity: MODERATE

Description:

ActivePost Messenger is an instant messenger suite that includes a server and a client and is designed to facilitate inter-office communications. It supports file transfer as well as other features.

ActivePost Messenger is reportedly affected by multiple remote vulnerabilities. These issues are due to a failure of the application to validate user-supplied input, a failure of the application to handle exceptional conditions, and a design error that fails to properly secure forum passwords.

The first issue presents itself when a malicious user attempts to upload a file with a filename length of greater than 4074 characters. Apparently the server application crashes when attempting to parse such file names. The underlying cause of this issue is currently unknown, however it is likely that it is due to memory corruption. Code execution may be possible, however this is not verified.

The second issue is a directory traversal issue in the file upload functionality that would allow an attacker to upload files onto a host computer in any directory writable by the affected server application. Apparently files uploaded in this way may also be exploited to overwrite arbitrary files such as system files.

The final issue is a plaintext forum password disclosure issue. Apparently when a user enters the 'Conference' menu, the plaintext passwords of all password-protected forums are transmitted across the network to the client application. Passwords transferred in this way may be read using network-sniffing utilities.

Affected Products:

  • ActivePost Standard 3.0.0
  • ActivePost Standard 3.1.0

References:

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.