Info

Disclosure

May 15, 2000

Discovery

Unknown

Dates

Exploit

May 15, 2000

Solution

Unknown

Description

AntiSniff contains a flaw that allows a remote attacker to execute arbitrary code on a vulnerable host. The flaw is due to one of the tests performed not properly validating input on incoming packets. A carefully crafted packet that does not adhere to DNS specifications can trigger a remote overflow and allow arbitrary code to be executed.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public

Solution

Upgrade to version 1.02 or higher, as it has been reported to fix this vulnerability. Users may also install the vendor provided patch that mitigates this vulnerability.

Products

@Stake, Inc.

AntiSniff

1.01

References

Bugtraq ID: 1207
Exploit Database: 19916 19917 19918
CVE ID: 2000-0405 (see also: NVD)
ISS X-Force ID: 4459
Other Advisory URL: http://archives.neohapsis.com/archives/win2ksecadvice/2000-q2/0106.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/3179