Lucene search

K

SAINT CorporationSAINT:9D42EB66723E58F7F44200130996FD8C

HistoryFeb 05, 2010 - 12:00 a.m.

Sun Java System Web Server WebDAV OPTIONS request buffer overflow

2010-02-0500:00:00

SAINT Corporation

download.saintcorporation.com

17

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.972

Percentile

99.9%

Added: 02/05/2010
CVE: CVE-2010-0361
BID: 37874
OSVDB: 61851

Background

Sun Java System Web Server is a web application server. WebDAV (Web-based Distributed Authoring and Versioning) is an extension to the HTTP protocol which allows users to edit web server content.

Problem

A buffer overflow vulnerability in Sun Java System Web Server’s WebDAV implementation allows remote attackers to execute arbitrary commands by sending a specially crafted OPTIONS request.

Resolution

Upgrade to Sun Java System Web Server 6.1 Service Pack 12 or 7.0 Release 8 or higher.

References

<http://secunia.com/advisories/38260/>
<http://sunsolve.sun.com/search/document.do?assetkey=1-66-275850-1>

Limitations

Exploit works on Sun Java System Web Server 7.0 Update 7 on Windows Server 2003 SP2 with patch KB933729.

WebDAV support must be enabled on the target in order for the exploit to succeed, and the correct WebDAV URI must be specified.

Platforms

Windows

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.972

Percentile

99.9%

Related for SAINT:9D42EB66723E58F7F44200130996FD8C

seebug3 cvelist1 packetstorm4 exploitpack2 checkpoint_advisories1 saint3 prion1 exploitdb3 zdt2 nvd1 metasploit1 cve1 openvas6