Webroot Desktop Firewall PWIWrapper.dll FirewallNTService.exe Overflow

2005-10-06T04:45:42
ID OSVDB:19868
Type osvdb
Reporter Tan Chew Keong(vuln@secunia.com)
Modified 2005-10-06T04:45:42

Description

Vulnerability Description

A local overflow exists in Webroot Desktop Firewall. The 'PWIWrapper.dll' library fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request, a malicious user can cause arbitrary code execution with SYSTEM privileges resulting in a loss of integrity.

Solution Description

Upgrade to version 1.3.0 build 52 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A local overflow exists in Webroot Desktop Firewall. The 'PWIWrapper.dll' library fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request, a malicious user can cause arbitrary code execution with SYSTEM privileges resulting in a loss of integrity.

References:

Vendor URL: http://www.webroot.com/ Security Tracker: 1015012 Secunia Advisory ID:15745 Related OSVDB ID: 19869 Other Advisory URL: http://secunia.com/secunia_research/2005-10/advisory/ Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0129.html ISS X-Force ID: 22529 CVE-2005-3197 Bugtraq ID: 15016