CVE-2011-5227

Name of the Vulnerable Software and Affected Versions Enterasys Network Management Suite (NMS) versions prior to 4.1.0.80

Description The issue is related to a stack-based buffer overflow in the Syslog service, specifically in the nssyslogd.exe component. This occurs when a long PRIO field in a message is sent to UDP port 514, allowing remote attackers to execute arbitrary code.

Recommendations For versions prior to 4.1.0.80, update to version 4.1.0.80 or later to resolve the issue. As a temporary workaround, consider restricting access to UDP port 514 to minimize the risk of exploitation.