Lucene search
SAINT CorporationSAINT:753140AF527820D515A1C7931C4A7453HistoryApr 25, 2008 - 12:00 a.m.
Borland StarTeam Multicast Service parse_request buffer overflow
2008-04-2500:00:00
SAINT Corporation
download.saintcorporation.com
18
0.751 High
EPSS
Percentile
98.2%
Added: 04/25/2008
CVE: CVE-2008-0311
BID: 28602
OSVDB: 44039
Background
Borland StarTeam is a software change and configuration management system.
Problem
A buffer overflow vulnerability in the **PGMWebHandler::parse_request** function in the StarTeam Multicast Service allows remote attackers to execute arbitrary commands by sending a large HTTP request.
Resolution
Disable the Multicast Service monitoring port.
References
<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=675>
Limitations
Exploit works on Borland StarTeam 2005.
Platforms
Windows 2000
Windows Server 2003
Related
checkpoint_advisories
checkpoint_advisories
saint
saint
Borland StarTeam Multicast Service parse_request buffer overflow
2008-04-25 00:00:00
Borland StarTeam Multicast Service parse_request buffer overflow
2008-04-25 00:00:00
Borland StarTeam Multicast Service parse_request buffer overflow
2008-04-25 00:00:00
cvelist
cvelist
CVE-2008-0311
2008-04-06 23:00:00
nvd
nvd
CVE-2008-0311
2008-04-06 23:44:00
cve
cve
CVE-2008-0311
2008-04-06 23:44:00
packetstorm
packetstorm
Borland CaliberRM StarTeam Multicast Service Buffer Overflow
2009-11-26 00:00:00
seebug
seebug
Borland StarTeam Multicast服务GMWebHandler::parse_request()栈溢出漏洞
2008-04-09 00:00:00
prion
prion
Stack overflow
2008-04-06 23:44:00