CVE-2008-1322

ASG-Sentry Network Mgr <7.0.0 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-1322. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The document provides a detailed technical analysis of multiple vulnerabilities in ASG-Sentry, including arbitrary file deletion, heap overflow in FxAgent, service termination, and buffer overflow in FxIAList. It includes proof-of-concept commands and references to external exploit files.

Description

The File Check Utility (fcheck.exe) in ASG-Sentry Network Manager 7.0.0 and earlier allows remote attackers to cause a denial of service (CPU consumption) or overwrite arbitrary files via a query string that specifies the -b option, probably due to an argument injection vulnerability.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Luigi Auriemma · textdosmultiple

https://www.exploit-db.com/exploits/5229

View Code ZIP pw:eip

The document provides a detailed technical analysis of multiple vulnerabilities in ASG-Sentry, including arbitrary file deletion, heap overflow in FxAgent, service termination, and buffer overflow in FxIAList. It includes proof-of-concept commands and references to external exploit files.

Classification

Writeup 95%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: ASG-Sentry <= 7.0.0

No auth needed

Prerequisites: Network access to the target server · ASG-Sentry service running on default ports

MITRE ATT&CK