Intrusion Prevention

Sybase.EAServer.Remote.Buffer.Overflow

Description

This indicates a possible attempt to exploit a buffer overflow vulnerability in WebConsole component of Sybase EAServer. A remote attacker can overflow a buffer in the jagsrv.exe process. As a result the attacker may be able to execute arbitrary code on the system.

Affected Products

Sybase Enterprise Application Server 5.2 and earlier.

Impact

System compromise, arbitrary code execution.

Recommended Actions

Updates are available from Sybase.
http://www.sybase.com/detail?id=1036742

CVE References

CVE-2005-2297