APP: Flexera FlexNet Publisher License Server Heap Buffer Overflow

This signature detects attempts to exploit a known vulnerability in FlexNet Publisher License Server. Successful exploitation could possibly allow execution of arbitrary code in the security context of system.

Extended Description

Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11.13.1.2 Security Update 1 allow remote attackers to execute arbitrary code via a crafted packet with opcode (a) 0x107 or (b) 0x10a.

Affected Products

Flexerasoftware flexnet_publisher

References

CVE: CVE-2015-8277

Short Name
APP:FLEXERA-FLEXNET-BO
Severity
Major
Recommended
True
Recommended Action
Drop
Category
APP
Keywords
Buffer CVE-2015-8277 FlexNet Flexera Heap License Overflow Publisher Server
Release Date
06/09/2016
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3337
Port
TCP/27000,49297,50024,50017,2700
False Positive
Unknown
Vendors

Flexerasoftware

CVSS Score

10.0

Found a potential security threat?