Bugtraq mailing list archives
4D 6.7 DOS and Buffer Overflow Vulnerability
From: "Alfred Goldberg" <agoldberg () absoluteitsolutions com>
Date: Tue, 18 Jun 2002 12:59:54 -0400
Vulnerability Summary --------------------- Problem: The 4D 6.7 webserver has a buffer overflow condition. Threat: An attacker could make the webserver crash and possibly execute arbitrary code. Affected Software: 4D Webserver version 6.7.3 verified. Platform: Windows verified. Solution: Update to the version mentioned below. Vulnerability Description ------------------------- 4D is unable to handle long HTTP requests. The result is a termination of the 4D application as the buffer is overflown. Solution ------- 4D 6.8 seems to of addressed this problem. Additional Information ---------------------- 4D was contacted 20020606 but returned no reply. This vulnerability was found and researched by Dumitru Vlad
Current thread:
- 4D 6.7 DOS and Buffer Overflow Vulnerability Alfred Goldberg (Jun 18)