Wingate.WWW.Proxy.Server.Request.Buffer.Overflow
Description
Indicates a possible attempt at exploiting a Stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate. The application fails to properly validate user-supplied input before copying it to an internal buffer. A successful exploit could allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long URL HTTP request.
Affected Products
Qbik WinGate 6.1.1.1077 (other versions may be affected)
Impact
Denial of service
System compromise
Recommended Actions
Fortinet is unaware of any updates from the vendor. Please visit the vendors site (see reference section).
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-04-09 | 14.589 | Default_action:pass:drop |