{"id":14380,"date":"2019-01-20T14:20:36","date_gmt":"2019-01-20T22:20:36","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2019\/01\/20\/news-8132\/"},"modified":"2019-01-20T14:20:36","modified_gmt":"2019-01-20T22:20:36","slug":"news-8132","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2019\/01\/20\/news-8132\/","title":{"rendered":"SSD Advisory – Teco SG2 and TP3 Vulnerabililites"},"content":{"rendered":"

Credit to Author: SSD \/ Noam Rathaus| Date: Mon, 04 Jul 2016 12:58:21 +0000<\/strong><\/p>\n

\n
\n

Vulnerabilities Description<\/strong>
Multiple vulnerabilities have been found in Teco’s SG2 and TP3 product, these vulnerabilities allows attackers that are able to supply the products with a specially crafted file to cause it to execute arbitrary code.<\/p>\n

<\/span><\/p>\n

TECO TP3 PC-LINK tpc file parsing Stack Buffer Overflow Code Execution<\/strong>
TECO uses their own propriety file format known as tpc. When setting an overly long string within a tpc file a stack buffer can be overflowed potentially allowing for Code Execution.<\/p>\n

TECO SG2 Client gen file parsing Stack Buffer Overflow (SEH overwrite) Code Execution<\/strong>
TECO uses their own propriety file format known as gen. When setting an overly long string within a gen file a stack buffer can be overflowed potentially allowing for Code Execution.<\/p>\n

TECO SG2 Client ‘timer function’ gfb file parsing arbitrary write Code Execution<\/strong>
TECO uses their own propriety file format known as gfb. When setting an overly long timer function name within a gfb file the application uses the value to calculate an offset to a byte write. This can allow for Code Execution.<\/p>\n

\"Print<\/a><\/div>\n<\/div><\/div>\n

https:\/\/blogs.securiteam.com\/index.php\/feed<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

Credit to Author: SSD \/ Noam Rathaus| Date: Mon, 04 Jul 2016 12:58:21 +0000<\/strong><\/p>\n

Vulnerabilities Description Multiple vulnerabilities have been found in Teco’s SG2 and TP3 product, these vulnerabilities allows attackers that are able to supply the products with a specially crafted file to cause it to execute arbitrary code. TECO TP3 PC-LINK tpc file parsing Stack Buffer Overflow Code Execution TECO uses their own propriety file format known … Continue reading SSD Advisory – Teco SG2 and TP3 Vulnerabililites<\/span><\/a><\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10643,10754],"tags":[10755,12136],"class_list":["post-14380","post","type-post","status-publish","format-standard","hentry","category-independent","category-securiteam","tag-commentary","tag-unauthenticated-action"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/14380","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=14380"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/14380\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=14380"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=14380"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=14380"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}