Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4541

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4541
Last Modified 17 Oct 2011 12:00:00
Published 13 Oct 2008 04:00:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4541

Summary

Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.

Vulnerable Systems

Application

  • Sun Java System Web Proxy Server 4.0

  • Sun Java System Web Proxy Server 4.0.1

  • Sun Java System Web Proxy Server 4.0.2

  • Sun Java System Web Proxy Server 4.0.3

  • Sun Java System Web Proxy Server 4.0.4

  • Sun Java System Web Proxy Server 4.0.5

  • Sun Java System Web Proxy Server 4.0.6

  • Sun Java System Web Proxy Server 4.0.7


References

XF - sun-webproxy-ftp-bo(45782)

VUPEN - ADV-2008-2781

BID - 31691

SUNALERT - 242986

SECTRACK - 1021038

SECUNIA - 32227

IDEFENSE - 20081009 Sun Java Web Proxy Server FTP Resource Handling Heap-Based Buffer Overflow


Last Updated: 27 May 2016 10:48:32