[Xpress] Internet Scanner XPU 6.4 Now Available!

From: ISS Customer Relations (bpq@iss.net)
Date: 01/07/02 

To: xpress@iss.net
From: ISS Customer Relations <bpq@iss.net>
Date: Mon, 07 Jan 2002 13:05:58 -0500

Internet Scanner X-Press Update 6.4 is now available from the ISS Download
Center: <http://www.iss.net/eval/eval.php>.

XPU 6.4 delivers one new vulnerability check. This check identifies a
remote buffer overflow vulnerability
in the AOL Instant Messenger (AIM) software that may allow remote attackers
to execute arbitrary commands on a victim's system.

AOL has issued a fix for the vulnerability, which prevents AOL's messaging
infrastructure from transmitting this attack. However, a buffer overflow
condition still exists in the AOL client. This check executes by querying
the registry of target systems for vulnerable versions of AIM.

An X-Force Alert provides further information about this vulnerability, as
well as recommendations and a user-defined signature to detect this issue
for RealSecure. The Alert can be accessed
at: <http://xforce.iss.net/alerts/advise107.php>.

NEW CHECKS

The new check in this XPU is listed below.

Risk VulnID Check Name Category
==== ====== ========== =========
High 7743 AimGameOverflow Unauthorized Access

* Please note that this check requires administrative privileges on scanned
hosts.

VERSIONS/PLATFORMS

XPU 6.4 is for use with Internet Scanner version 6.2.1. Internet Scanner
6.2.1 is available on the ISS Download
Center: <http://www.iss.net/eval/eval.php>.

_______________________________________________
Xpress mailing list
Xpress@iss.net