Detections
Analytics

eEye Retina Wireless Scanner .rws Handling Buffer Overflow

high Nessus Plugin ID 39809

Synopsis

The network scanner installed on the remote Windows host has a buffer overflow vulnerability.

Description

The version of Retina Wireless Scanner installed on the remote host has a local buffer overflow vulnerability. A remote attacker could exploit this issue by tricking a user into opening a malformed .rws file. This could cause the program to crash or possibly result in the execution of arbitrary code.

Note that while Retina Wireless Scanner comes included with Retina Network Security Scanner, it can also be installed as a standalone application.

Solution

Either upgrade to Retina Network Security Scanner 5.10.15 or later or Retina WiFi Scanner (standalone) 1.0.9 or later.

See Also

https://www.beyondtrust.com/resources/blog/research/

Plugin Details

Severity: High

ID: 39809

File Name: retina_wifi_rws_overflow.nasl

Version: 1.15

Type: local

Agent: windows

Family: Windows

Published: 7/16/2009

Updated: 11/15/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Exploitable With

Core Impact

Reference Information

CVE: CVE-2009-3859

BID: 35624

CWE: 119

Secunia: 35786