Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Gain root remotely >> WinGate POST Request Buffer Overflow Vulnerability


Vulnerability Assessment Details

WinGate POST Request Buffer Overflow Vulnerability

Vulnerability Assessment Summary
Checks version number in WinGate's banner

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote HTTP proxy server is prone to a buffer overflow attack.

Description :

The remote host appears to be running WinGate Proxy Server, a Windows
application for managing and securing Internet access.

According to its banner, the version of WinGate installed on the
remote host is affected by a buffer overflow vulnerability in its HTTP
proxy service. A possible hacker with access to use the proxy may be able
to exploit this issue to execute arbitrary code on the remote host.

Note that by default the service operates with LOCAL SYSTEM
rights, which means that a successful attack may result in a
complete compromise of the affected system.

See also :

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046646.html
http://forums.qbik.com/viewtopic.php?t=4215

Solution :

Upgrade to WinGate 6.1.3 or later.

Network Security Threat Level:

High / CVSS Base Score : 7.0
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)

Networks Security ID: 18312

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors


R281-3C2 2U 12 Bay GPU Server 2Ghz 40-C 128GB 2x10G SFP+ 2x1200W TrueNAS ZFS picture

R281-3C2 2U 12 Bay GPU Server 2Ghz 40-C 128GB 2x10G SFP+ 2x1200W TrueNAS ZFS

$1090.24



Cisco 1100 Terminal - gateway - rack-mountable C1100TGX-1N24P32A picture

Cisco 1100 Terminal - gateway - rack-mountable C1100TGX-1N24P32A

$1000.00



Dell R730xd 12LFF 2.6Ghz 20-C 128GB H730 2x10G+2x1G NIC 2x1100W 12x Trays Rails picture

Dell R730xd 12LFF 2.6Ghz 20-C 128GB H730 2x10G+2x1G NIC 2x1100W 12x Trays Rails

$694.05



Dell R730xd 12LFF 2.6Ghz 28-C 128GB 12x10TB HDD H730 10G+1G NIC 2x1100W Rails picture

Dell R730xd 12LFF 2.6Ghz 28-C 128GB 12x10TB HDD H730 10G+1G NIC 2x1100W Rails

$1780.05



SuperMicro Server 505-2 Intel Atom 2.4GHz 8GB RAM SYS-5018A-FTN4 1U Rackmount picture

SuperMicro Server 505-2 Intel Atom 2.4GHz 8GB RAM SYS-5018A-FTN4 1U Rackmount

$179.99



Dell PowerEdge R620 Server 2x Xeon  E5-2620 @ 2.0GHz 64GB RAM NO HDDs picture

Dell PowerEdge R620 Server 2x Xeon E5-2620 @ 2.0GHz 64GB RAM NO HDDs

$120.00



Dell Poweredge R630 2x Xeon E5-2660 v3 2.6ghz 20-Cores / 32gb / H730 / iDracEnt picture

Dell Poweredge R630 2x Xeon E5-2660 v3 2.6ghz 20-Cores / 32gb / H730 / iDracEnt

$282.92



Dell PowerEdge R730XD 28 Core Server 2X Xeon E5-2680 V4 H730 128GB RAM No HDD picture

Dell PowerEdge R730XD 28 Core Server 2X Xeon E5-2680 V4 H730 128GB RAM No HDD

$389.99



Dell PowerEdge R820 Server 4x E5-4620 2.2GHz 32-Core Total 256GB 0HD 2x 1100w  picture

Dell PowerEdge R820 Server 4x E5-4620 2.2GHz 32-Core Total 256GB 0HD 2x 1100w

$315.00



HP Proliant DL380 G9 2x E5-2680 v4 2.4Ghz 28-Cores 32GB P440ar 2x 300gb 2x 750w picture

HP Proliant DL380 G9 2x E5-2680 v4 2.4Ghz 28-Cores 32GB P440ar 2x 300gb 2x 750w

$139.99



Discussions

No Discussions have been posted on this vulnerability.