Intrusion Prevention

Enterasys.NetSight.Nssyslogd.Stack.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in Enterasys NetSight.
The vulnerability is due to an improper boundary check condition in the application when handling a long PRIO field in a message. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.

Affected Products

Enterasys NetSight 4.0.1.34 and prior versions

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

update to 4.1.0.80 or higher version
http://www.enterasys.com/products/visibility-control/index.aspx

CVE References

CVE-2011-5227