/// File Name: |
integard-pro.rb.txt |
Description:
|
This Metasploit module exploits a stack buffer overflow in Race river's Integard Home/Pro internet content filter HTTP Server. Versions prior to 2.0.0.9037 and 2.2.0.9037 are vulnerable. The administration web page on port 18881 is vulnerable to a remote buffer overflow attack. By sending an long character string in the password field, both the structured exception handler and the saved extended instruction pointer are over written, allowing an attacker to gain control of the application and the underlying operating system remotely. The administration website service runs with SYSTEM privileges, and automatically restarts when it crashes.
| Author: | Lincoln,Node,Nullthreat,Rick,corelanc0d3r,jduck | Homepage: | http://www.metasploit.com | File Size: | 18531 | Related OSVDB(s): | 67909 | Last Modified: | Sep 15 20:14:41 2010 |
MD5 Checksum: | bb6a939603cc7cb3cca5941b99529d4a |
|