Intrusion Prevention

Winlog.Pro.Malformed.Packet.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in Sielco Sistemi Winlog Pro.
The vulnerability is caused by an error when the vulnerable software handles a crafted 0x02 opcode to TCP port 46823. It allows a remote attacker to cause a denial-of-service condition or inject and execute arbitrary code on the vulnerable system within the security context of the affected service, normally System.

Affected Products

SIELCO SISTEMI Winlog Pro 2.7 and prior

Impact

System compromise: Remote attackers can gain control of vulnerable systems.
Denial of service

Recommended Actions

Update to SIELCO SISTEMI Winlog Pro 2.7.1 or higher version

CVE References

CVE-2011-0517