APP: Bopup Communications Server Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Bopup Communications Server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
The Bopup Communication Server is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of the affected server. Successful attacks will compromise the server and possibly the underlying computer. Failed attacks will likely cause denial-of-service conditions. Bopup Communication Server 3.2.26.5460 is vulnerable; other versions may also be affected.
Affected Products
B_labs bopup_communication_server
Short Name
APP:MISC:BOPUP-COMMUNICATION-BO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Bopup Buffer CVE-2009-2227 Communications Overflow Server bid:43836
Release Date
10/31/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/19810
False Positive
Unknown
Vendors
B_labs
CVSS Score
10.0