Intrusion Prevention

eEye.Retina.WiFi.Scanner.RWS.Buffer.Overflow

Description

This indicates an attempt to exploit a buffer overflow vulnerability in eEye Retina WiFi Scanner.
The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious .rws file. It allows a remote attacker to execute arbitrary code via sending a crafted .rws file.

Affected Products

eEye Digital Security Retina WiFi Scanner 1.0.8 68
eEye Digital Security Retina Network Security Scanner 5.10.14

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's web site for suggested workaround.
http://research.eeye.com/html/advisories/published/AD20090710.html

CVE References

CVE-2009-3859