APP: LANDesk Management Suite QIP Service Heal Packet Buffer Overflow
There exists a memory corruption vulnerability in LANDesk QIP service. The vulnerability is due to insufficient validation when processing specially crafted In case of a successful exploitation, the attacker can inject and execute arbitrary code with the privileges of the affected service, normally In the case of an unsuccessful code execution attack, the service will be terminated due to memory corruption, causing Denial of Service.
Extended Description
LANDesk Intel QIP Service is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. Successful exploits may allow an attacker to execute arbitrary code with SYSTEM-level privileges. This will result in a complete compromise of vulnerable computers. Failed exploit attempts will likely result in denial-of-service conditions. This issue affects the following: LANDesk Management Suite 8.8 and earlier LANDesk Security Suite 8.8 and earlier LANDesk Server Manager 8.8 and earlier
Affected Products
Landesk_software landesk_management_suite
Short Name
APP:LANDESK-QIP-HEAL
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Buffer CVE-2008-2468 Heal LANDesk Management Overflow Packet QIP Service Suite bid:31193
Release Date
10/13/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/12175
False Positive
Unknown
Vendors
Landesk_software
CVSS Score
10.0