AppDetective™ Update 2.5.43 - 14 June 2002

NEW CHECKS

Lotus Domino / Lotus Web Server (Pen Test and Security Audit)

Title: HTTP Authenticate Buffer Overflow

Description: Check the version of Domino to verify if the server is vulnerable to a buffer overflow caused by passing a log string to the HTTP Authenticate header.

Summary: During authentication of a web client to the Lotus HTTP web server, a header is sent that includes authentication information. A buffer overflow has been discovered in the logging process that writes the HTTP Authenticate header to the domlog.nsf database.

Microsoft SQL Server (Pen Test and Security Audit)

Title: pwdencrypt buffer overflow

Description: Check the version to determine if the server contains a buffer overflow in the pwdencrypt function.

Summary: The built-in function pwdencrypt contains a buffer overflow that may allow an attacker to overwrite the stack and execute arbitrary code under the security context of the database. The first parameter of the function does not properly handle a long string.

Microsoft SQL Server (Security Audit)

Title: Lumigent Log Explorer buffer overflow

Description: Verify that extended stored procedures for the tool Lumigent Log Explorer are not installed.

Summary: The Lumigent Log Explorer is a third-party database tool that audits database activity via the Microsoft SQL Server transaction log. Log Explorer installs several extended stored procedures. Some of these extended stored procedures do not allocate memory properly and contain buffer overflows.