Compaq web-enabled management software contains buffer overflow in authentication username

Overview

The Compaq web-enabled management software contains a buffer overflow in the authentication component of the product. Remote intruders may be able to execute arbitrary code with privileges on affected systems. Many Compaq products are affected, from personal computers to commercial UNIX operating systems.

Description

The Compaq web-enabled management software allows system management information to be accessed through a web interface. This web interface is secured by an login dialog accessible on port 2301 of the system running the vulnerable software. The authentication code has a buffer overflow in the username field, allowing a remote intruder to execute arbitrary code with the privileges of the Compaq web-enabled management software. This often includes elevated privileges (e.g., root or Administrator).

Affected Compaq products include those running Microsoft Windows 9x, Windows NT, Windows 2000, NetWare, SCO Open Server, SCO UnixWare 7, RedHat 6.2, RedHat 7.0, Tru64Unix, and OpenVMS. Web-enabled management software is also supported for Compaq storage products.

Compaq has produced a security advisory describing this problem at

<http://www.compaq.com/products/servers/management/agentsecurity.html&gt;

Impact

A remote intruder may be able to execute arbitrary code with privileges on systems running the vulnerable software.

---

Solution

Apply a Patch

Apply a patch from your vendor. Information about patches to correct this problem is available in the Compaq security advisory. The patches described in Compaq security advisory SSRT0715 and VU#991240 will correct this vulnerability and another.

---

Disable the Web-Enabled Management Software

You can prevent this vulnerability from being exploited by disabling the web-enabled management software.

Block Ports 2301 and 280 at Your Perimeter

Port 2301 (the device management port) is the port used to access the vulnerable code. Blocking access to this port from untrusted sources may reduce the risk of exploitation. You may also wish to block port 280 (the Compaq Insight Manager XE port).

---

Vendor Information

137024

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Compaq Computer Corporation __ Affected

Notified: January 11, 2001 Updated: April 06, 2001

Status

Affected

Vendor Statement

Compaq has produced a security advisory on this issue:

<http://www.compaq.com/products/servers/management/agentsecurity.html&gt;

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23137024 Feedback>).

CVSS Metrics

Group	Score	Vector
Base
Temporal
Environmental

References

• <http://www.compaq.com/products/servers/management/agentsecurity.html&gt;
• <http://www.securityfocus.com/bid/2200&gt;
• <http://www.ciac.org/ciac/bulletins/l-042.shtml&gt;

Acknowledgements

This document was written by Cory F. Cohen.

Other Information

CVE IDs:	CVE-2001-0134
Severity Metric:	38.96 Date Public: