CVE - CVE-2006-3838

CVE-ID
CVE-2006-3838	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) before 2.5.0, as used in products including (a) Sidewinder, (b) iPolicy Security Manager, (c) Astaro Report Manager, (d) Fortinet FortiReporter, (e) Top Layer Network Security Analyzer, and possibly other products, allow remote attackers to execute arbitrary code via long (1) DELTAINTERVAL, (2) LOGFOLDER, (3) DELETELOGS, (4) FWASERVER, (5) SYSLOGPUBLICIP, (6) GETFWAIMPORTLOG, (7) GETFWADELTA, (8) DELETERDEPDEVICE, (9) COMPRESSRAWLOGFILE, (10) GETSYSLOGFIREWALLS, (11) ADDPOLICY, and (12) EDITPOLICY commands to the Syslog daemon (syslogserver.exe); (13) GUIADDDEVICE, (14) ADDDEVICE, and (15) DELETEDEVICE commands to the Topology server (Topology.exe); the (15) LICMGR_ADDLICENSE command to the License Manager (EnterpriseSecurityAnalyzer.exe); the (16) TRACE and (17) QUERYMONITOR commands to the Monitoring agent (Monitoring.exe); and possibly other vectors related to the Syslog daemon (syslogserver.exe).
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:19163 URL:http://www.securityfocus.com/bid/19163 BID:19164 URL:http://www.securityfocus.com/bid/19164 BID:19165 URL:http://www.securityfocus.com/bid/19165 BID:19167 URL:http://www.securityfocus.com/bid/19167 BUGTRAQ:20060725 TSRT-06-03: eIQnetworks Enterprise Security Analyzer Syslog Server Buffer Overflow Vulnerabilities URL:http://www.securityfocus.com/archive/1/441200/100/0/threaded BUGTRAQ:20060725 TSRT-06-04: eIQnetworks Enterprise Security Analyzer Topology Server Buffer Overflow Vulnerability URL:http://www.securityfocus.com/archive/1/441198/100/0/threaded BUGTRAQ:20060725 ZDI-06-023: eIQNetworks Enterprise Security Analyzer Syslog Server Buffer Overflow Vulnerability URL:http://www.securityfocus.com/archive/1/441197/100/0/threaded BUGTRAQ:20060725 ZDI-06-024: eIQNetworks Enterprise Security Analyzer License Manager Buffer Overflow Vulnerability URL:http://www.securityfocus.com/archive/1/441195/100/0/threaded BUGTRAQ:20060808 TSRT-06-07: eIQnetworks Enterprise Security Analyzer Monitoring Agent Buffer Overflow Vulnerabilities URL:http://archive.cert.uni-stuttgart.de/bugtraq/2006/08/msg00152.html CERT-VN:VU#513068 URL:http://www.kb.cert.org/vuls/id/513068 CONFIRM:http://www.eiqnetworks.com/products/enterprisesecurity/EnterpriseSecurityAnalyzer/ESA_2.5.0_Release_Notes.pdf MISC:http://www.tippingpoint.com/security/advisories/TSRT-06-03.html MISC:http://www.tippingpoint.com/security/advisories/TSRT-06-04.html MISC:http://www.tippingpoint.com/security/advisories/TSRT-06-07.html MISC:http://www.zerodayinitiative.com/advisories/ZDI-06-023.html MISC:http://www.zerodayinitiative.com/advisories/ZDI-06-024.html OSVDB:27525 URL:~~http://www.osvdb.org/27525~~ (Obsolete source) OSVDB:27526 URL:~~http://www.osvdb.org/27526~~ (Obsolete source) OSVDB:27527 URL:~~http://www.osvdb.org/27527~~ (Obsolete source) OSVDB:27528 URL:~~http://www.osvdb.org/27528~~ (Obsolete source) SECTRACK:1016580 URL:http://securitytracker.com/id?1016580 SECUNIA:21211 URL:http://secunia.com/advisories/21211 SECUNIA:21213 URL:http://secunia.com/advisories/21213 SECUNIA:21214 URL:http://secunia.com/advisories/21214 SECUNIA:21215 URL:http://secunia.com/advisories/21215 SECUNIA:21217 URL:http://secunia.com/advisories/21217 SECUNIA:21218 URL:http://secunia.com/advisories/21218 VUPEN:ADV-2006-2985 URL:~~http://www.vupen.com/english/advisories/2006/2985~~ (Obsolete source) VUPEN:ADV-2006-3006 URL:~~http://www.vupen.com/english/advisories/2006/3006~~ (Obsolete source) VUPEN:ADV-2006-3007 URL:~~http://www.vupen.com/english/advisories/2006/3007~~ (Obsolete source) VUPEN:ADV-2006-3008 URL:~~http://www.vupen.com/english/advisories/2006/3008~~ (Obsolete source) VUPEN:ADV-2006-3009 URL:~~http://www.vupen.com/english/advisories/2006/3009~~ (Obsolete source) VUPEN:ADV-2006-3010 URL:~~http://www.vupen.com/english/advisories/2006/3010~~ (Obsolete source) XF:eiqnetworks-esa-licensemanager-bo(27952) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/27952 XF:eiqnetworks-esa-monitoring-bo(27954) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/27954 XF:eiqnetworks-esa-syslog-command-bo(27951) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/27951 XF:eiqnetworks-esa-syslog-string-bo(27950) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/27950 XF:eiqnetworks-esa-topology-bo(27953) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/27953
Assigning CNA
MITRE Corporation
Date Record Created
20060725	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20060725)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)