Users of OmniVista 4760 please be advised of an Alcatel-Lucent- arbitrary code execution vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)
Amplify’d from www.criticalwatch.com
n.runs-SA-2010.002: Alcatel-Lucent - arbitrary code execution on OmniVista 4760
Affected Products: OmniVista 4760 server: all versions prior to
release R5.1.06.03.c_Patch3.
Vulnerability: arbitrary code execution
Description:
--------
By sending a long HTTP GET request it is possible to overwrite CPU
registers.
Due to this vulnerability, an attacker can control the execution path
remotely.
Read more at www.criticalwatch.com
See this Amp at http://bit.ly/aGLBXl
No comments:
Post a Comment