1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Borland Accurev Reprise License Server Activate_doit Buffer Overflow

Attack: Borland Accurev Reprise License Server Activate_doit Buffer Overflow

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to cause a stack buffer overflow in the Reprise License Management service on installations of Borland AccuRev. Authentication is not required to exploit this vulnerability.

Additional Information

The specific flaw exists within the activate_doit function of the service. The issue lies in the handling of the akey parameter which can result in overflowing a stack-based buffer. An attacker could leverage this vulnerability to execute code under the context of SYSTEM.

Affected

  • Borland AccuRev 6.2.1a.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube