Internet Security Systems Protocol Analysis Module ICQ Parsing Buffer Overflow Vulnerability

It has been reported that the Internet Security Systems (ISS) Protocol Analysis Module is prone to a remote buffer overflow vulnerability when parsing the ICQ protocol. This issue exists due to insufficient bounds checking performed on certain unspecified ICQ protocol fields supplied in ICQ response data.

Successful exploitation of this issue may allow a remote attacker to execute arbitrary code on a vulnerable system in order to gain unauthorized access. This attack would occur in the context of the vulnerable process.

This module is used to parse network protocols and is included in a number of products provided by ISS, including various RealSecure and BlackICE releases.


Privacy Statement
Copyright 2010, SecurityFocus