AnalogX Proxy Long URL (340) Overflow

2003-05-16T00:00:00
ID OSVDB:3667
Type osvdb
Reporter K. K. Mookhey(cto@nii.co.in)
Modified 2003-05-16T00:00:00

Description

Vulnerability Description

AnalogX Proxy contains a flaw that allows a local network user to execute arbitrary code on the proxy server. The flaw is due to the proxy not properly filtering long URI requests. By supplying a carefully crafted URI greater than 340 characters to the proxy on port 6588, it will overflow a buffer and allow the malicious user to execute arbitrary code.

Solution Description

Upgrade to version 4.14 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

AnalogX Proxy contains a flaw that allows a local network user to execute arbitrary code on the proxy server. The flaw is due to the proxy not properly filtering long URI requests. By supplying a carefully crafted URI greater than 340 characters to the proxy on port 6588, it will overflow a buffer and allow the malicious user to execute arbitrary code.

References:

Vendor URL: http://www.analogx.com/contents/download/network/proxy.htm Secunia Advisory ID:8860 Other Advisory URL: http://www.nii.co.in/vuln/analogx.html Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0082.html ISS X-Force ID: 12068 CVE-2003-0410 Bugtraq ID: 7681