FlexNet License Server Manager Remote Code Execution Vulnerability

Release date:
Updated on:

Affected Systems:
Flexera FlexNet License Server Manager
IBM Rational License Key Server
Description:
--------------------------------------------------------------------------------
Bugtraq id: 49191
Cve id: CVE-2011-1389

Flexera is a strategic solution provider for application usage management. FlexNet License Server Manager provides certificate management services.

FlexNet License Server Manager has a remote code execution vulnerability that allows remote attackers to execute arbitrary code. This vulnerability can be exploited without verification.

This vulnerability is located in the lmadmin and lmgrd components listened to by default on TCP port 27000. When processing an opcode 0x2f packet, the process trusts the user-provided packet retention byte value. With this contaminated retention length value, the process copies the packet data to the heap buffer. Remote attackers can exploit this vulnerability to execute arbitrary code.

<* Source: Luigi Auriemma (aluigi@pivx.com)

Link: http://www.zerodayinitiative.com/advisories/ZDI-11-244/
Http://www.flexerasoftware.com/pl/13057.htm
Http://www-01.ibm.com/support/docview.wss? Uid = swg21577760
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

Flexera
-------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:

Www.flexerasoftware.com/