Vulnerabilities > CVE-2013-3249 - Out-of-bounds Write vulnerability in Solarwinds Dameware Remote Support
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Stack-based buffer overflow in the "Add from text file" feature in the DameWare Exporter tool (DWExporter.exe) in DameWare Remote Support 10.0.0.372, 9.0.1.247, and earlier allows user-assisted attackers to execute arbitrary code via unspecified vectors.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family | Windows |
NASL id | DAMEWARE_REMOTE_SUPPORT_OVERFLOW.NASL |
description | The remote Windows host has a version of DameWare Remote Support prior to 9.0.1 / 10.0.0 Hotfix 2. It is, therefore, affected by a buffer overflow vulnerability due to a flaw in DWExporter.exe. An attacker could potentially exploit this vulnerability to remotely execute arbitrary code. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 72742 |
published | 2014-02-28 |
reporter | This script is Copyright (C) 2014-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/72742 |
title | DameWare Remote Support < 9 Hotfix 2 / 10 Hotfix 2 DWExporter.exe Buffer Overflow |
code |
|
References
- http://osvdb.org/95658
- http://osvdb.org/95658
- http://secunia.com/advisories/53096
- http://secunia.com/advisories/53096
- http://www.securityfocus.com/bid/61453
- http://www.securityfocus.com/bid/61453
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85973
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85973