Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
LANDesk command injection
1. *Advisory Information*
Title: LANDesk command injection
Core Security Technologies - CoreLabs Advisory
http://corelabs.coresecurity.com/
Landesk OS command injection
1. *Advisory Information*
Title: Landesk OS command injection
Advisory Id: CORE-2010-1018
TPTI-08-06: Landesk QIP Server Service Heal Packet Buffer Overflow
Vulnerability
http://dvlabs.tippingpoint.com/advisory/TPTI-08-06
September 15, 2008
-- CVE ID:
CVE-2008-2468
-- Affected Vendors:
LANDesk
#######################################################################
Luigi Auriemma
Application: LANDesk Management Suite
http://www.landesk.com/products/ldms/index.aspx
Versions: <= 8.80.1.1
Platforms: Windows
Bug: directory traversal
Exploitation: remote
Exploitation of this vulnerability allows an attacker to execute
arbitrary code with SYSTEM privileges. In order to exploit this
vulnerability, an attacker must be able to establish a TCP session on
port 12174 with the vulnerable host.
The vulnerable service is actually part of LANDesk Management Suite. It
is not clear whether the behavior described is part of the intended
functionality of the program. However, the manner in which the service
is being used by the Symantec System Center is unsafe.
In a default client type installation, the Symantec System Center is not
