RDM Embedded Lock Manager < 9.x - 'lm_tcp' Service Buffer Overflow Vulnerability

2010-12-07
ID: 56302
CVE: None
Download vulnerable application: None
source: http://www.securityfocus.com/bid/45245/info

RDM Embedded is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. The issue affects the 'lm_tcp' service.

Successful exploits may allow an attacker to execute arbitrary code in the context of a user running an application that uses the affected library. Failed exploit attempts may crash the application, denying service to legitimate users.

The issue affects lm_tcp <= 9.0.0 0248.18.0.0; other versions may also be affected. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/35062.zip
1-4-2 (www01)