[DSECRG-11-008] Open Edge RDBMS - Multiple architecture vulnerabilities (UNPATCHED)

Digital Security Research Group DSecRG Advisory DSECRG-11-008 Application: Progress OpenEdge Enterprise RDBMS Versions Affected: 10.2A and maybe others Vendor URL: http://web.progress.com Bug: Authentication bypass, UserID enumerate Exploits: YES Reported: 13.10.2009 Vendor response: 13.10.2009...

CVE-2007-2417

Heap-based buffer overflow in mprosrv.exe in Progress Software Progress 9.1E and OpenEdge 10.1x, as used by the RSA Authentication Manager 6.0 and 6.1, SecurID Appliance 2.0, ACE/Server 5.2, and possibly other products, allows remote attackers to execute arbitrary code via crafted packets. NOTE:...

CVE-2007-2417

CVE-2007-2417 concerns a heap-based overflow in Progress OpenEdge’s Progress server component _mprosrv.exe. The vulnerability affects Progress OpenEdge 9.1E and 10.1x (via the Progress server) and can be triggered by crafted TCP packets received on the server, leading to potential remote code exe...

CVE-2007-3491

Buffer overflow in mprosrv in Progress Software OpenEdge before 9.1E0422, and 10.x before 10.1B01, allows remote attackers to have an unknown impact via a malformed TCP/IP message...

Buffer overflow

Buffer overflow in mprosrv in Progress Software OpenEdge before 9.1E0422, and 10.x before 10.1B01, allows remote attackers to have an unknown impact via a malformed TCP/IP message...

CVE-2007-3491

Buffer overflow in mprosrv in Progress Software OpenEdge before 9.1E0422, and 10.x before 10.1B01, allows remote attackers to have an unknown impact via a malformed TCP/IP message...

CVE-2007-3491

CVE-2007-3491 concerns a buffer overflow in Progress OpenEdge’s _mprosrv (before 9.1E0422 and before 10.1B01 for 10.x) that can be triggered by a malformed TCP/IP message. The available documents identify the affected component (_mprosrv.exe) and the vulnerable versions, with an remote-access vec...

OpenEdge buffer overflow

Buffer overflow on parsing TCP/IP message...

Openedge _mprosrv buffer overflow

There is a potential for a buffer overflow in the database executable mprosrv while reading a TCP/IP message that is incorrectly formatted. To avoid this problem, additional checking has been added to the mprosrv executable that will prevent incorrectly formatted messages from causing buffer...

Webspeed OpenEdge Dos exploit

Webspeed OpenEdge Dos exploit Bug Discovered By :Eelko Neven Exploit Coded By spyMASter eklimizide koyalm : www.ulpow.net The Eliminators of the Web First you have to find the messenger execution url. For example: http://target/scripts/cgiip.exe/WService=wsbroker1...

Multiple Denial of Service attacks possible for Webspeed OpenEdge

Denial of Service attack against OpenEdge WebSpeed possible through dict.r. 11-5-2007 author: Eelko Neven discovered: 9-5-2007 Because of poor security in dict.r it is possible to put all agents in busy mode. First you have to find the messenger execution url. For example:...

Progress OpenEdge 10b - Multiple Denial of Service Vulnerabilities

Progress OpenEdge 10b - Multiple Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/23926/info OpenEdge is prone to multiple denial-of-service vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits can allow attackers to cause the...

Progress OpenEdge 10b - Multiple Denial of Service Vulnerabilities

source: https://www.securityfocus.com/bid/23926/info OpenEdge is prone to multiple denial-of-service vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits can allow attackers to cause the application to become unresponsive, denying service to legitimate...

Code injection

WebSpeed 3.x in OpenEdge 10.x in Progress Software Progress 9.1e, and certain other 9.x versions, allows remote attackers to cause a denial of service infinite loop and daemon hang via a messenger URL that invokes edit.r with no additional parameters, as demonstrated by requests for cgiip.exe or...

CVE-2007-2506

This CVE concerns WebSpeed 3.x in OpenEdge 10.x in Progress Software Progress 9.1e and some 9.x variants. The vulnerability allows remote attackers to cause a denial of service (infinite loop and daemon hang) by requesting a messenger URL that calls _edit.r with no additional parameters, demonstr...

CVE-2007-2506

WebSpeed 3.x in OpenEdge 10.x in Progress Software Progress 9.1e, and certain other 9.x versions, allows remote attackers to cause a denial of service infinite loop and daemon hang via a messenger URL that invokes edit.r with no additional parameters, as demonstrated by requests for cgiip.exe or...