Vulnerability: Internet Security Systems

Internet Security Systems has discovered a vulnerability in the SMB (Server Message Block) protocol parsing routines of the ISS Protocol Analysis Module (PAM) component, found in various ISS products. This may lead to a heap overflow condition.

Affected products include:

RealSecure Network 7.0, XPU 20.15 through 22.9

RealSecure Server Sensor 7.0 XPU 20.16 through 22.9

Proventia A Series XPU 20.15 through 22.9

Proventia G Series XPU 22.3 through 22.9

Proventia M Series XPU 1.3 through 1.7

RealSecure Desktop 7.0 eba through ebh

RealSecure Desktop 3.6 ebr through ecb

RealSecure Guard 3.6 ebr through ecb

RealSecure Sentry 3.6 ebr through ecb

BlackICE PC Protection 3.6 cbr through ccb

BlackICE Server Protection 3.6 cbr through ccb

For details, see http://xforce.iss.net/xforce/alerts/id/165.

Join the newsletter!

Error: Please check your email address.

More about Internet Security SystemsISS GroupSecurity Systems

Show Comments

Market Place