Intrusion Prevention

NetSupport.Manager.Client.Code.Execution

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in NetSupport Manager Agent.
The vulnerability is due to a boundary error while handling an overly long control hostname on port 5405/TCP. Attackers could exploit this vulnerability to execute arbitrary code by sending a malicious request to the application.

Affected Products

NetSupport Manager 11.00 for Linux
NetSupport Manager 9.50 for Solaris
NetSupport Manager 11.00 for Mac OS X

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any patches supplied by the vendor for this issue.

CVE References

CVE-2011-0404