CVE-2010-5333

Name of the Vulnerable Software and Affected Versions Integard Pro versions prior to 2.0.0.9037 Integard Home versions prior to 2.0.0.9037 Integard Pro and Home versions 2.2.x prior to 2.2.0.9037

Description The web server has a buffer overflow via a long password in an administration login POST request, leading to arbitrary code execution. This issue can be exploited through an EIP-overwrite buffer overflow.

Recommendations For Integard Pro and Home versions prior to 2.0.0.9037, update to version 2.0.0.9037 or later. For Integard Pro and Home versions 2.2.x prior to 2.2.0.9037, update to version 2.2.0.9037 or later. As a temporary workaround, consider restricting access to the administration login POST request until a patch is available. Avoid using long passwords in the administration login until the issue is resolved.