AnalogX SimpleServer:WWW 1.0.1 - GET Buffer Overflow

1999-12-31T00:00:00
ID EXPLOITPACK:D8A57F1CDB3B34C730450B0DC674AF0B
Type exploitpack
Reporter Ussr Labs
Modified 1999-12-31T00:00:00

Description

AnalogX SimpleServer:WWW 1.0.1 - GET Buffer Overflow

                                        
                                            source: https://www.securityfocus.com/bid/906/info

The SimpleServer:WWW personal webserver package from AnalogX can be compromised due to an overflowable buffer. If a GET request longer than 1000 bytes is received, the software will crash and data from the request gets pased to the EIP, meaning that an exploit could be created to run arbitrary code.

DoS attack:
GET [1000 bytes] HTTP/1.1