OSVDB ID: 44454

Title: BigAnt Messenger IM Server AntServer Module (AntServer.exe) URI Handling Remote Overflow

Info

Disclosure

Apr 15, 2008

Discovery

Unknown

Dates

Exploit

Apr 15, 2008

Solution

May 06, 2008

Description

A remote overflow exists in BigAnt IM Server. The AntServer.exe process fails to use bounds checking resulting in a stack overflow. With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of confidentiality, integrity, and/or availability.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity, Loss of Availability
Solution: Upgrade
Exploit: Exploit Available
Disclosure: OSVDB Verified, Uncoordinated Disclosure

Solution

Upgrade to version 2.35 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

BigAntSoft

BigAnt IM Server

2.2

References

CVE ID: 2008-1914 (see also: NVD)
Bugtraq ID: 28795
Secunia Advisory ID: 29831
ISS X-Force ID: 41830
Milw0rm: 5451
Vendor URL: http://www.bigantsoft.com/download.html
Vendor Specific Solution URL: http://www.bigantsoft.com/download/bigant.zip

Credit

Matteo Memelli -

Direct URL: http://osvdb.org/36218