Intrusion Prevention

Reprise.License.Manager.akey.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in the Reprise License Manager.
The vulnerability is caused by an improper validation of Reprise License Manager server akey parameter when the vulnerable application handles a maliciously crafted HTTP request. An attacker can exploit this to execute arbitrary code in the context of the vulnerable application via a crafted HTTP request.

Affected Products

Reprise Software License Manager version 11 and the prior

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue