Integard Home and Pro HTTP Buffer Overflow Vulnerability

Summary
The host is running Integard Home/Pro internet content filter HTTP server and is prone to buffer overflow vulnerability.
Impact
Successful exploitation may allow remote attackers to execute arbitrary code on the system with elevated privileges or cause the application to crash. Impact Level: Application/System
Solution
Upgrade to Integard Pro version 2.2.0.9037 or Integard Home version 2.0.0.9037, For updates refer to http://www.raceriver.com/Download_Web_Filtering_Software.htm
Insight
The flaw is due to a boundary error within the web interface when processing certain HTTP requests. This can be exploited to cause a stack-based buffer overflow by sending specially crafted HTTP POST requests containing an overly long 'Password' parameter to the web interface.
Affected
Integard Home version prior to 2.0.0.9037 Integard Pro version prior to 2.2.0.9037
References