297 matches found
CVE-2009-3861
Stack-based buffer overflow in SafeNet SoftRemote 10.8.5 Build 2 and 10.3.5 Build 6, and possibly other versions before 10.8.9, allows local users to execute arbitrary code via a long string in a 1 TREENAME or 2 GROUPNAME Policy file spd...
PT-2009-6086 · Safenet · Safenet Softremote
Name of the Vulnerable Software and Affected Versions: SafeNet SoftRemote versions 10.3.5 through 10.8.5 Description: A stack-based buffer overflow issue allows local users to execute arbitrary code via a long string in a 1 TREENAME or 2 GROUPNAME Policy file spd. Recommendations: For versions...
SafeNet SoftRemote Local Buffer Overflow - Security Advisory - SOS-09-008
SafeNet SoftRemote Local Buffer Overflow - Security Advisory - SOS-09-008 Release Date. 30-Oct-2009 Vendor Notification Date. 20-Jul-2009 Product. SafeNet SoftRemote Platform. Microsoft Windows Affected versions. 10.8.5 Build 2, 10.3.5 Build 6 verified and possibly others. Other vendors which hav...
SafeNet SoftRemote buffer overflow
Buffer overflow on policy file parsing...
SafeNet SoftRemote IKE Service Buffer Overflow
This module exploits a stack buffer overflow in Safenet SoftRemote IKE IreIKE.exe service. When sending a specially crafted udp packet to port 62514 an attacker may be able to execute arbitrary code. This module has been tested with Juniper NetScreen-Remote 10.8.0 Build 20 using...
CVE-2009-1943
Stack-based buffer overflow in the IKE service ireIke.exe in SafeNet SoftRemote before 10.8.6 allows remote attackers to execute arbitrary code via a long request to UDP port 62514...
DSquare Exploit Pack: D2SEC_VPNJUN
Name| d2secvpnjun ---|--- CVE| CVE-2009-1943 Exploit Pack| D2ExploitPack Description| Safenet SoftRemote IKE Service Remote Stack Overflow Vulnerability Notes|...
Stack overflow
Stack-based buffer overflow in the IKE service ireIke.exe in SafeNet SoftRemote before 10.8.6 allows remote attackers to execute arbitrary code via a long request to UDP port 62514...
CVE-2009-1943
Stack-based buffer overflow in the IKE service ireIke.exe in SafeNet SoftRemote before 10.8.6 allows remote attackers to execute arbitrary code via a long request to UDP port 62514...
CVE-2009-1943
CVE-2009-1943 pertains to SafeNet SoftRemote: the IKE service (ireIKE.exe) on affected versions up to 10.8.5 (pre-10.8.6) is vulnerable to a stack-based buffer overflow triggered by a crafted UDP payload to port 62514, allowing remote code execution. The vulnerability is widely cited across multi...
KLA10317 ACE vulnerability in SafeNet SoftRemote
A buffer overflow was found in SoftRemote. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products SafeNet-SoftRemote CVE list CVE-2009-1943 critical Solution...
SafeNet SoftRemote IKE服务远程栈溢出漏洞
BUGTRAQ ID: 35154 SoftRemote是SafeNET VPN产品系列中的VPN客户端。 Softremote中默认监听于UDP 62514端口上的VPN服务(ireIke.exe)存在栈溢出漏洞。如果远程攻击者向该服务提交了超长请求的话,就可以触发这个溢出,导致以SYSTEM权限执行任意代码。 SafeNet SoftRemote 10.8.6 厂商补丁: SafeNet ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.safenet-inc.com/products/vpn/softRemote.asp...
Safenet SoftRemote buffer overflow
Buffer overflow in UDP/62514 port IKE service...
ZDI-09-024: Safenet SoftRemote IKE Service Remote Stack Overflow Vulnerability
ZDI-09-024: Safenet SoftRemote IKE Service Remote Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-024 June 1, 2009 -- Affected Vendors: Safenet -- Affected Products: Safenet SoftRemote -- TippingPointTM IPS Customer Protection: TippingPoint IPS customers have been...
Safenet SoftRemote IKE Service Remote Stack Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Safenet Softremote IKE VPN service. Authentication is not required to exploit this vulnerability. The specific flaw exists in the ireIke.exe service listening on UDP port 62514. The process doe...
CVE-2008-5121
dne2000.sys in Citrix Deterministic Network Enhancer DNE 2.21.7.233 through 3.21.7.17464, as used in 1 Cisco VPN Client, 2 Blue Coat WinProxy, and 3 SafeNet SoftRemote and HighAssurance Remote, allows local users to gain privileges via a crafted DNEIOCTL DeviceIoControl request to the \.\DNE...
CVE-2008-5121
CVE-2008-5121 affects dne2000.sys used by Citrix Deterministic Network Enhancer (DNE) versions 2.21.7.233 through 3.21.7.17464, which are deployed with Cisco VPN Client, Blue Coat WinProxy, and SafeNet SoftRemote/HighAssurance Remote. The vulnerability is a local privilege escalation via a crafte...
Deterministic Network Extender 'dne2000.sys' Local Privilege Escalation
A kernel driver from Deterministic Network Extender DNE is installed on the remote host. DNE is typically packaged with third-party applications and is reportedly included with : - SafeNet HighAssurance Remote and SoftRemote - Cisco VPN Client - Blue Coat Systems WinProxy The installed version of...
Deterministic Network Extender 'dne2000.sys'本地特权提升漏洞
BUGTRAQ ID: 29772 CNCAN ID:CNCAN-2008061907 Deterministic Network Extender不正确过滤用户提供的数据,可导致本地特权提升。 攻击者可以利用漏洞以SYSTEM级别权限执行任意代码。 Deterministic Network Extender 'dne2000.sys' 2.21.7.233 - 3.21.7.17464版本受此漏洞影响,'dne2000.sys'驱动与如下产品绑定使用: - SafeNet HighAssurance Remote and SoftRemote - Cisco VPN Client -...
Deterministic Network Enhancer dne2000.sys kernel ring0 SYSTEM exploit
No description provided by source. / dne2000-call.c Copyright c 2008 by [email protected] Deterministic Network Enhancer dne2000.sys local kernel ring0 SYSTEM exploit by mu-b - Sun 06 Jan 2008 - Tested on: dne2000.sys 2.21.7.233 - 3.21.7.17464...