eScan Blog
eScan Website
eScan Forum
eScan Feeds From eScan Wiki
(Difference between revisions)
| Revision as of 05:43, 8 June 2010 WikiSysop (Talk | contribs) ← Previous diff |
Revision as of 12:38, 30 August 2010 WikiSysop (Talk | contribs) Next diff → |
||
| Line 13: | Line 13: | ||
| * [[Marketing/Advertisement|<font color="blue">Advertisement</font>]] | * [[Marketing/Advertisement|<font color="blue">Advertisement</font>]] | ||
| |width="1000pt" style="width:11%; font-size:95%; white-space:nowrap;" | | |width="1000pt" style="width:11%; font-size:95%; white-space:nowrap;" | | ||
| - | <B>Knowledgebase</B> | + | <B><p> Knowledgebase</p></B> |
| * [[Technical Info|<font color="blue">Technical Information</font>]] | * [[Technical Info|<font color="blue">Technical Information</font>]] | ||
| * [[Beta Testing|<font color="blue">Beta Testing</font>]] | * [[Beta Testing|<font color="blue">Beta Testing</font>]] | ||
| * [[Release Candidate|<font color="blue">Release Candidate</font>]] | * [[Release Candidate|<font color="blue">Release Candidate</font>]] | ||
| * [[User Guide|<font color="blue">User Guides</font>]] | * [[User Guide|<font color="blue">User Guides</font>]] | ||
| + | * [[Escan/english/Technologies|<font color="blue">Technologies</font>]] | ||
| |width="1000pt" style="width:11%; font-size:95%;white-space:nowrap;" | | |width="1000pt" style="width:11%; font-size:95%;white-space:nowrap;" | | ||
| <B><p> Support</p></B> | <B><p> Support</p></B> | ||
Revision as of 12:38, 30 August 2010
|
General |
Knowledgebase |
Support |
| · Articles · FAQ · Troubleshooting | · Technical Information - Main Page |
The vulnerability is caused due to a boundary error in the MicroWorld Agent service (MWAGENT.EXE) when decrypting received commands. This can be exploited to cause a stack-based buffer overflow via an overly long command sent to the service (default port 2222/tcp).
This vulnerability has been resolved in the latest hotfix and version 9.0.178.1 and later. MWAGENT.EXE is a gateway between eScan client and server. To avoid this vulnerability, we are using encrypted data format.
