eScan Blog
eScan Website
eScan Forum
eScan Feeds From eScan Wiki
(Difference between revisions)
| Revision as of 11:11, 4 December 2009 WikiSysop (Talk | contribs) ← Previous diff |
Current revision WikiSysop (Talk | contribs) |
||
| Line 1: | Line 1: | ||
| + | {| class="wikitable" border="0" | ||
| + | |||
| + | {| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;" | ||
| + | | style="width:56%; color:#000;" | | ||
| + | {| style="width:280px; border:none; background:none;" | ||
| + | | [[Image:Escan_wikipedia.jpg|left|<!--We add confidence to computing-->]] | ||
| + | |} | ||
| + | |width="1000pt" style="width:11%; font-size:95%;" white-space:nowrap;| | ||
| + | <B><p> General</p></B> | ||
| + | * [[Main Page|<font color="blue">Home</font>]] | ||
| + | * [[Marketing|<font color="blue">Marketing</font>]] | ||
| + | * [[Events|<font color="blue">Events</font>]] | ||
| + | * [[Marketing/Advertisement|<font color="blue">Advertisement</font>]] | ||
| + | * [[Escan/english/Security_Awareness|<font color="blue">Security Awareness</font>]] | ||
| + | |width="1000pt" style="width:11%; font-size:95%; white-space:nowrap;" | | ||
| + | <B><p> Knowledgebase</p></B> | ||
| + | * [[Technical Info|<font color="blue">Technical Information</font>]] | ||
| + | * [[Beta Testing|<font color="blue">Beta Testing</font>]] | ||
| + | * [[Release Candidate|<font color="blue">Release Candidate</font>]] | ||
| + | * [[User Guide|<font color="blue">User Guides</font>]] | ||
| + | * [[Escan/english/Technologies|<font color="blue">Technologies</font>]] | ||
| + | |width="1000pt" style="width:11%; font-size:95%;white-space:nowrap;" | | ||
| + | <B><p> Support</p></B> | ||
| + | * [[EMail|<font color="blue">eMail</font>]] | ||
| + | * [[Online Chat|<font color="blue">Online Chat</font>]] | ||
| + | * [[Telephonic Support|<font color="blue">Telephone</font>]] | ||
| + | * [[Remote Support|<font color="blue">Remote Support</font>]] | ||
| + | * [[Forums|<font color="blue">Forums</font>]] | ||
| + | |} | ||
| + | {| class="wikitable" border="0" | ||
| + | |} | ||
| + | |||
| + | {| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;" | ||
| + | | style="width:10%; color:#000;" | | ||
| + | {| style="width:100px; border:none; background:none;" | ||
| + | | [[Image:escan-g.jpg]] | ||
| + | |} | ||
| + | |style="text-align:left;"|'''·''' [[Escan/english/eScan-Articles|<font size=1.5 color="blue" align="left">Articles</font>]] '''·''' [[Escan/english/eScan-FAQ|<font size=1.5 color="blue">FAQ</font>]] '''·''' [[Escan/english/eScan-Troubleshooting|<font size=1.5 color="blue">Troubleshooting</font>]] | ||
| + | |style="text-align:right;"| '''·''' [[Technical Info|<font size=1.5 color="blue">Technical Information - Main Page</font>]] | ||
| + | |} | ||
| + | |||
| + | {| class="wikitable" border="0" | ||
| + | |} | ||
| + | |||
| The vulnerability is caused due to a boundary error in the MicroWorld Agent service (MWAGENT.EXE) when decrypting received commands. This can be exploited to cause a stack-based buffer overflow via an overly long command sent to the service (default port 2222/tcp). | The vulnerability is caused due to a boundary error in the MicroWorld Agent service (MWAGENT.EXE) when decrypting received commands. This can be exploited to cause a stack-based buffer overflow via an overly long command sent to the service (default port 2222/tcp). | ||
| This vulnerability has been resolved in the latest hotfix and version 9.0.178.1 and later. MWAGENT.EXE is a gateway between eScan client and server. To avoid this vulnerability, we are using encrypted data format. | This vulnerability has been resolved in the latest hotfix and version 9.0.178.1 and later. MWAGENT.EXE is a gateway between eScan client and server. To avoid this vulnerability, we are using encrypted data format. | ||
Current revision
|
General |
Knowledgebase |
Support |
| · Articles · FAQ · Troubleshooting | · Technical Information - Main Page |
The vulnerability is caused due to a boundary error in the MicroWorld Agent service (MWAGENT.EXE) when decrypting received commands. This can be exploited to cause a stack-based buffer overflow via an overly long command sent to the service (default port 2222/tcp).
This vulnerability has been resolved in the latest hotfix and version 9.0.178.1 and later. MWAGENT.EXE is a gateway between eScan client and server. To avoid this vulnerability, we are using encrypted data format.
