Intrusion Prevention

LANDesk.Management.Agent.Local.DoS

Description

This indicates an attack attempt to exploit a local Denial of Service attack on LANDesk Management Agent software.
The vulnerability is due to an improper out-of-bounds memory read exception handling when parsing a crafted HTTP request sent to server application collector.exe. A local attacker could exploit this to terminate the target application.

Affected Products

LANDesk Agent 11.0.1.951 and below

Impact

System Compromise: Local attackers can cause denial of service on the vulnerable machine

Recommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.