Heap overflow

2009-02-2616:17:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.3%

JSON

Unspecified vulnerability in sISAPILocation before 1.0.2.2 allows remote attackers to bypass intended access restrictions for character encoding and the cookie secure flag via unknown vectors related to the “HTTP header rewrite function.”

CPENameOperatorVersion
sisapilocationeq1.0.1.4
sisapilocationeq1.0.1.3
sisapilocationle1.0.2.0

Name	Operator	Version
sisapilocation	eq	1.0.1.4
sisapilocation	eq	1.0.1.3
sisapilocation	le	1.0.2.0

References

jvn.jp/en/jp/JVN67060882/index.html

jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000076.html

rocketeer.dip.jp/sanaki/free/free100.htm

secunia.com/advisories/32581

www.securityfocus.com/bid/32247

www.vupen.com/english/advisories/2008/3105

exchange.xforce.ibmcloud.com/vulnerabilities/46516