Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
RSH:OVERFLOW:WINRSHD-OF |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
RSH |
Keywords |
Microsoft Windows RSH Daemon Buffer Overflow |
Release Date |
2010/05/18 |
Update Number |
1683 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
RSH: Microsoft Windows RSH Daemon Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Microsoft Windows RSH Daemon. A successful attack allows attackers to execute arbitrary code within the context of the affected application.
Extended Description
Windows RSH daemon ('rshd') is prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized buffer. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial of service. This issue affects Windows rshd 1.8; other versions may also be affected.
Affected Products
- Windows_rsh_daemon windows_rsh_daemon 1.7
- Windows_rsh_daemon windows_rsh_daemon 1.8
References
- BugTraq: 25044
- CVE: CVE-2007-4006