CVE-2012-2606 - Uncrated Examination

Description

The agent in Bradford Network Sentry before 5.3.3 does not require authentication for messages which allows remote attackers to trigger the display of arbitrary text on a workstation via a crafted packet to UDP port 4567 as demonstrated by a replay attack.

Reference

https://na3.salesforce.com/sfc/#version?id=06850000000JDx3 http://www.kb.cert.org/vuls/id/709939 http://www.kb.cert.org/vuls/id/MAPG-8TJKAF