CVE-2005-3489

Remote attackers can exploit this vulnerability by sending a long username or password string to the web server when authentication is enabled. The vulnerability is triggered during the authorization process, potentially leading to arbitrary code execution. The exploit involves crafting a specially formatted HTTP request with an overly long 'Authorization' header. [ref_id=1]

The vulnerability resides within the authentication mechanism of the web server component of Asus Video Security Online. Specifically, it affects versions 3.5.0 and earlier. The exploit targets the handling of authorization credentials, suggesting the issue lies in how these are processed before or during authentication. [ref_id=1]

The advisory does not provide specific details on a patch or fix. However, it indicates that the vulnerability exists in Asus Video Security Online 3.5.0 and earlier. Users are advised to upgrade to a non-vulnerable version. The patch would likely involve implementing proper bounds checking for username and password inputs within the authentication module to prevent buffer overflows. [ref_id=1]

The provided reference includes a C exploit code that can be used to reproduce the vulnerability. It demonstrates sending a crafted HTTP request with a long username/password to trigger the buffer overflow. [ref_id=1]