Sun Web Server 7.0 overflow

[Evgeny Legerov <admin () vulndisco net>]

Hello,

Sun Web Server TRACE bug  -
http://intevydis.blogspot.com/2010/01/sun-java-system-web-server-70u7-trace.html

Basically, when we are sending the sequence of "<one_character>:\n"
headers we are able to bypass size check and overflow output buffer.

regards,
-el
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave