lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <000001c52410$f2bcbfe0$0201a8c0@CIRT>
From: advisory at cirt.dk (CIRT.DK Advisory)
Subject: CIRT.DK Advisory - SafeNet Inc Sentinel License
	Manager 7.2.0.2 Buffer Overflow

The security flaw
When sending a large amount of data to the SentinelLM service, it will
result in a buffer overflow 
where the Extended Instruction Pointer are overwritten, allowing arbitrary
code being run on the server, 
with the rights of the service.

About SafeNet inc.
SafeNet provides complete security utilizing its encryption technologies to
protect communications, 
intellectual property and digital identities, and offers a full spectrum of
products including hardware, 
software, and chips. 

About Sentinel License Manager
Sentinel LM is a software-based license management application allowing
application developers 
to implement multiple pre-built license models with a single software
development integration effort. 

Read the entire CIRT-30-advisory at http://www.cirt.dk 





Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ