| Name | Unisys.Business.Information.Server.Stack.Buffer.Overflow |
| Last Updated Date | Aug 25, 2009 |
| Release Date | Aug 18, 2009 |
| Severity | Critical |
| Impact | System Compromise: Remote attackers can gain control of vulnerable systems. |
| Description | This indicates an attack attempt against a buffer overflow vulnerability in Unisys Business Information Server.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted packet. It allows a remote attacker to execute arbitrary code. |
| Affected Products | Unisys Business Information Server 10.1
Unisys Business Information Server 10 |
| Recommended Actions | Apply patch, available from the web site:
ftp://ftp.support.unisys.com/pub/mapper/NT/BIS10.1/Readme.txt |
| Common Vulnerabilities and Exposures (CVE) | http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-1628
|
| Reference/s | http://www.securityfocus.com/bid/35494 (BugTraq)
|