CVE-2005-4734 Information

Description

Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web (aka SecurID Web Agent) 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method.

Reference

http://secunia.com/advisories/17281 http://www.metasploit.com/projects/Framework/exploits.htmlrsa_iiswebagent_redirect http://www.osvdb.org/20151 http://www.securityfocus.com/bid/26424 https://knowledge.rsasecurity.com/dlcpages/rsa_securid/securid_dlc_aaweb.asp Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web (aka SecurID Web Agent) 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method.