Forum Thread: DAEMON Tools Unspecified Denial of Service Vulnerability

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
DAEMON Tools Unspecified Denial of Service Vulnerability

Secunia DAEMON Tools Unspecified Denial of Service Vulnerability
Secunia Official 15th Oct, 2011 14:56
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
A vulnerability has been reported in DAEMON Tools, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

The vulnerability is caused due to an unspecified error and can be exploited to cause a system to crash.

The vulnerability is reported in versions prior to 4.41.0315.

Comrad RE: DAEMON Tools Unspecified Denial of Service Vulnerability
Member 15th Oct, 2011 14:56
Score: 1
Posts: 3
User Since: 15th Oct 2011
System Score: N/A
Location: UA
Last edited on 15th Oct, 2011 14:56
This advisory says about some vulnerability in DT Lite and suggests to update to version 4.41.0315, but there's no such version of DT Lite!!!
You've mixed up DT and DT Lite. For the latter last stable and secure version is still 4.41.3.0173!!!
Was this reply relevant?
+0
-0
Maurice Joyce RE: DAEMON Tools Unspecified Denial of Service Vulnerability
Handling Contributor 15th Oct, 2011 15:29
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
What new evidence have U got to support this bold statement?

You've mixed up DT and DT Lite. For the latter last stable and secure version is still 4.41.3.0173!!!

I assume U have studied the Advisory? Are U making a wild guess/assumption from it or can U validate it by including either:

1. A statement from the vendor support indicating that Secunia are incorrect & have indeed mixed up the free & professional programme.

2. U have reverse engineered the programme & can prove it with the relevant data.

3. U are a member of the vendor support staff.

In the past Secunia have not been to forgiving to users tagging on to their vulnerability advisories without a scrap of evidence in support of statements made.

If U have some authoritative information I have no doubt those on this thread will be also be delighted to read it.

http://secunia.com/community/forum/thread/show/115...



--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+2
-0
Comrad RE: DAEMON Tools Unspecified Denial of Service Vulnerability
Member 15th Oct, 2011 23:50
Score: 1
Posts: 3
User Since: 15th Oct 2011
System Score: N/A
Location: UA
Last edited on 15th Oct, 2011 23:50
I insist that here you have wrong and mixed up description of this vulnerability!!!
Read carefully of the original advisory by JVN:

Products Affected
DAEMON Tools Lite versions prior to 4.41.3
DAEMON Tools Pro Standard versions prior to 4.41.0315
DAEMON Tools Pro Advanced versions prior to 4.41.0315

So apparently DT Lite 4.41.3.0173 is not affected!!!
Please correct that in Secunia vulnerability Database so that PSI could make things right.
Was this reply relevant?
+2
-1
This user no longer exists RE: DAEMON Tools Unspecified Denial of Service Vulnerability
Member 17th Oct, 2011 12:27
Hi,

We have resolved a mismatch between file information and the information given in the advisory.

The Secunia advisory has been updated to reflect this.

If you run a full rescan, the program should be shown as patched.

Hope this helps.
Was this reply relevant?
+0
-0