nagios-plugins -- Long Location Header Buffer Overflow Vulnerability

2007-09-28T00:00:00
ID 7453C85D-7830-11DC-B4C8-0016179B2DD5
Type freebsd
Reporter FreeBSD
Modified 2007-09-28T00:00:00

Description

A Secunia Advisory reports:

The vulnerability is caused due to a boundary error within the redir() function in check_http.c when processing HTTP Location: header information. This can be exploited to cause a buffer overflow by returning an overly long string in the "Location:" header to a vulnerable system.