Sumus HTTP RespondeHTTPPendiente Function Remote Overflow

2005-04-13T02:59:07
ID OSVDB:15625
Type osvdb
Reporter Vade 79(v9@fakehalo.deadpig.org)
Modified 2005-04-13T02:59:07

Description

Vulnerability Description

A remote overflow exists in Sumus. The RespondeHTTPPendiente function fails to validate user-supplied input before passing it into a while loop resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A remote overflow exists in Sumus. The RespondeHTTPPendiente function fails to validate user-supplied input before passing it into a while loop resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor URL: http://sumus.sourceforge.net Security Tracker: 1013717 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0200.html ISS X-Force ID: 20110 Generic Exploit URL: http://fakehalo.us/xsumus.c CVE-2005-1110