Intrusion PreventionLANDesk.Management.Suite.QIP.Server.Buffer.Overflow
Description
This indicates an attack attempt against a buffer-overflow vulnerability in LANDesk QIP service.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted "heal" request. It allows a remote attacker to execute arbitrary code.
Affected Products
LANDesk Software LANDesk Server Manager 8.8
LANDesk Software LANDesk Server Manager 8.7
LANDesk Software LANDesk Security Suite 8.8
LANDesk Software LANDesk Security Suite 8.7
LANDesk Software LANDesk Management Suite 8.80.1 .1
LANDesk Software LANDesk Management Suite 8.0
LANDesk Software LANDesk Management Suite 7.0
LANDesk Software LANDesk Management Suite 8.8
LANDesk Software LANDesk Management Suite 8.7
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply patch, available from the web site:
http://community.landesk.com/support/docs/DOC-3276
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-02-01 | 14.540 | Name:Landesk. Management. Suite. QIP. Server. Buffer. Overflow:LANDesk. Management. Suite. QIP. Server. Buffer. Overflow |
References
http://www.kb.cert.org/vuls/id/538011| ID | 15848 |
| Created | Nov 27, 2008 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2008-2468 |
| Exploit Prediction Score | 40.34% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |