Lucene search
RootSSV:4263HistoryOct 20, 2008 - 12:00 a.m.
Sun Java系统Web代理服务器FTP子系统堆溢出漏洞
2008-10-2000:00:00
Root
www.seebug.org
7
0.093 Low
EPSS
Percentile
94.1%
BUGTRAQ ID: 31691
CVE(CAN) ID: CVE-2008-4541
Sun Java System Web Proxy Server是一款基于WEB的代理服务程序。
Sun Java Web代理服务器的FTP子系统没有正确地处理FTP资源。如果远程攻击者向有漏洞的服务器发送了恶意的HTTP GET请求的话,就可以触发堆溢出,导致执行任意指令。
Sun Java System Web Proxy Server 4.0 - 4.0.7
Sun已经为此发布了一个安全公告(Sun-Alert-242986)以及相应补丁:
Sun-Alert-242986:A Heap Overflow Security Vulnerability in the Sun Java Web Proxy Server
链接:<a href=“http://sunsolve.sun.com/search/printfriendly.do?assetkey=1-66-242986-1” target=“_blank”>http://sunsolve.sun.com/search/printfriendly.do?assetkey=1-66-242986-1</a>
Related
openvas
openvas
Sun Java System Web Proxy Server Two Vulnerabilities (Linux)
2008-10-16 00:00:00
Sun Java System Web Proxy Server < 4.0.8 Multiple Vulnerabilities - Windows
2008-10-16 00:00:00
Sun Java System Web Proxy Server < 4.0.8 Multiple Vulnerabilities - Linux
2008-10-16 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 10.14.08: Sun Java Web Proxy Server FTP Resource Handling Heap-Based Buffer Overflow
2008-10-16 00:00:00
Sun Java Web Proxy buffer overflow
2008-10-16 00:00:00
prion
prion
Heap overflow
2008-10-13 20:00:00
cve
cve
CVE-2008-4541
2008-10-13 20:00:00