CYBSEC - Security Advisory: Watchfire AppScan QA Remote Code Execution

The following advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSECSecurityAdvisoryAppScanQARemoteCodeExec.pdf CYBSEC S.A. www.cybsec.com Advisory Name: Watchfire AppScan QA Remote Code Execution ========== Vulnerability Class: Buffer Overflow =============...

CVE-2005-4270

Buffer overflow in Watchfire AppScan QA 5.0.609 and 5.0.134 allows remote web servers to execute arbitrary code via an HTTP 401 response with a WWW-Authenticate header containing a long Realm field...

CVE-2005-4270

CVE-2005-4270 affects Watchfire AppScan QA versions 5.0.609 and 5.0.134. A buffer overflow in handling an HTTP 401 response with a WWW-Authenticate header containing a long Realm field can allow a remote attacker to execute arbitrary code. The vulnerability is documented with a remote-code-execut...

Watchfire AppScan QA 5.0.x Remote Code Execution Exploit PoC

No description provided by source. Watchfire AppScan QA PoC - Coded by Mariano Nuñez Di Croce @ CYBSEC How to use: 1. Run this script to setup the fake web server. 2. Scan the server with AppScan QA, either in Interactive or Manual mode. 3. If you get an "You are vulnerable!" popup, you should...

Watchfire AppScan QA 5.0.x - Remote Code Execution

Watchfire AppScan QA PoC - Coded by Mariano Nuñez Di Croce @ CYBSEC How to use: 1. Run this script to setup the fake web server. 2. Scan the server with AppScan QA, either in Interactive or Manual mode. 3. If you get an "You are vulnerable!" popup, you should upgrade inmediatly. PoC developed for...