Heap-based Buffer Overflow in Foxit Remote Access Server 2.0
CVE-2008-7031

Currently unrated

Key Information:

Vendor: Foxit
Status: Wac Server
Vendor: CVE Published:; 24 August 2009

Summary

A heap-based buffer overflow vulnerability exists in Foxit Remote Access Server (also known as WAC Server) version 2.0 Build 3503, which can be exploited by remote attackers. This flaw allows the sending of overly long SSH packets resulting in a potential denial of service through server crashes and, under certain conditions, may permit attackers to execute arbitrary code on the affected system. Active exploitation of this vulnerability can lead to severe outcomes, compromising the security and stability of the associated servers.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/40608

vdb-entryx_refsource_XF

http://osvdb.org/50997

vdb-entryx_refsource_OSVDB

http://aluigi.org/adv/wachof-adv.txt

x_refsource_MISC

Timeline

Vulnerability published
Aug 24, 2009
Vulnerability Reserved
Aug 23, 2009