Design/Logic Flaw

2008-03-1314:44:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

High

0.05 Low

EPSS

Percentile

92.9%

JSON

The File Check Utility (fcheck.exe) in ASG-Sentry Network Manager 7.0.0 and earlier allows remote attackers to cause a denial of service (CPU consumption) or overwrite arbitrary files via a query string that specifies the -b option, probably due to an argument injection vulnerability.

CPENameOperatorVersion
asg-sentryle7.0.0

CPE	Name	Operator	Version
	asg-sentry	le	7.0.0

References

aluigi.altervista.org/adv/asgulo-adv.txt

secunia.com/advisories/29289

securityreason.com/securityalert/3737

www.securityfocus.com/archive/1/489359/100/0/threaded

www.securityfocus.com/bid/28188

www.vupen.com/english/advisories/2008/0839/references

exchange.xforce.ibmcloud.com/vulnerabilities/41080

www.exploit-db.com/exploits/5229