Cogent DataHub Unicode Buffer Overflow Vulnerability

Summary
The host is running Cogent DataHub and is prone to buffer overflow vulnerability.
Impact
Successful exploitation may allow remote attackers to execute arbitrary code within the context of the privileged domain or cause a denial of service condition. Impact Level: System/Application
Solution
Upgrade to Cogent DataHub version 7.1.2 or later. For updates refer to http://www.cogentdatahub.com/Products/Cogent_DataHub.html
Insight
The flaw is due to a stack based unicode buffer overflow error in the 'DH_OneSecondTick' function, which can be exploited by sending specially crafted 'domain', 'report_domain', 'register_datahub', or 'slave' commands.
Affected
Cogent DataHub 7.1.1.63 and prior.
References