OSVDB ID: 81146

Title: EMC IRM License Server NULL Pointer Dereference Version Compat Check Command Parsing Remote DoS

Info

Disclosure

Apr 10, 2012

Discovery

Unknown

Dates

Exploit

Apr 10, 2012

Solution

May 10, 2012

Description

EMC IRM License Server contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker supplies a compat check command with a missing *FIPS field or an invalid version which may result in a NULL pointer dereference.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Solution: Upgrade
Exploit: Exploit Public
Disclosure: Vendor Verified, Uncoordinated Disclosure

Solution

Upgrade to version 4.7.0100, 5.0.1030 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

EMC Corporation

EMC IRM License Server

4.6.1.1995

References

Security Tracker: 1027058
Exploit Database: 18734
CVE ID: 2012-2276 (see also: NVD)
Secunia Advisory ID: 48690
Bugtraq ID: 53005 53475
ISS X-Force ID: 75553
Related OSVDB ID: 81147
Other Advisory URL: http://aluigi.altervista.org/adv/irm_1-adv.txt
Generic Exploit URL: http://aluigi.altervista.org/poc/irm_1.zip
Packet Storm: http://packetstormsecurity.org/files/111816/EMC-IRM-License-Server-4.6.1.1995-NULL-Pointer.html
Mail List Post: http://seclists.org/bugtraq/2012/May/59

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/81146