Advisory Details

November 24th, 2013

Cogent DataHub Heap Overflow Remote Code Execution Vulnerability

ZDI-13-252
ZDI-CAN-1981

CVE ID
CVSS SCORE 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)
AFFECTED VENDORS Cogent Real-Time Systems
AFFECTED PRODUCTS Cogent Datahub
VULNERABILITY DETAILS


This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cogent DataHub. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the handling of POST requests. By sending a malformed POST, an attacker is able to overflow a heap buffer. An attacker could exploit this vulnerability to execute arbitrary code in the context of the DataHub process.

VENDOR RESPONSE Cogent Real-Time Systems has issued an update to correct this vulnerability. More details can be found at:
http://www.cogentdatahub.com/Download_Software.html
DISCLOSURE TIMELINE
  • 2013-09-06 - Vulnerability reported to vendor
  • 2013-11-24 - Coordinated public release of advisory
CREDIT Pawel Wylecial
BACK TO ADVISORIES