exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

eSO-5063.txt

eSO-5063.txt
Posted May 22, 2002
Authored by Kevin Kotas | Site eSecurityOnline.com

eSO Security Advisory 5063 - The gettransbitmap CGI, which is part of the AnswerBook2 Documentation Server, contains a remote exploitable buffer overflow. This vulnerability affects Sun AnswerBook2 version 1.4, 1.4.1, 1.4.2 and 1.4.3.

tags | remote, overflow, cgi
SHA-256 | f192b1acbf3f1b88a8cd9bcd90d75cfc8be19e5bdf71d9fca9e2cdcf619082b2

eSO-5063.txt

Change Mirror Download
eSO Security Advisory:          5063
Discovery Date: March 1, 2002
ID: eSO:5063
Title: Sun AnswerBook2 gettransbitmap buffer
overflow vulnerability
Impact: Remote attackers can execute arbitrary
code.
Affected Technology: Sun AnswerBook2 1.4, 1.4.1, 1.4.2,
1.4.3
Vendor Status: Vendor notified.
Discovered By: Kevin Kotas of the eSecurityOnline
Research and Development Team
CVE Reference: CAN-2002-0360

Advisory Location:
http://www.eSecurityOnline.com/advisories/eSO5063.asp

Description:
Sun AnswerBook2 is vulnerable to a stack based buffer overflow
condition that can allow a remote attacker to execute arbitrary code.
The problem is due to the gettransbitmap CGI that comes with
AnswerBook2 not correctly performing bounds checking on the filename
argument. A remote attacker can create a request that will result in
arbitrary code execution with user daemon privileges.

Technical Recommendation:
Presently, there are no vendor patches available. As a workaround
solution, remove access to the gettransbitmap binary.

chmod 0000 <path to>/gettransbitmap

Otherwise, disable AnswerBook2.

© 2002 eSecurityOnline LLC. All rights reserved.

THE INFORMATION IN THIS VULNERABILITY ALERT IS PROVIDED BY
ESECURITYONLINE LLC "AS IS", "WHERE IS", WITH NO WARRANTY OF ANY KIND,
AND ESECURITYONLINE LLC HEREBY DISCLAIMS THE IMPLIED WARRANTIES OF
NON-INFRINGEMENT, MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE. ESECURITYONLINE LLC SHALL HAVE NO LIABILITY FOR ANY DAMAGE,
CLAIM OR LOSS RESULTING FROM YOUR USE OF THE INFORMATION CONTAINED IN
THIS VULNERABILITY ALERT.
Login or Register to add favorites

File Archive:

November 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    16 Files
  • 2
    Nov 2nd
    17 Files
  • 3
    Nov 3rd
    17 Files
  • 4
    Nov 4th
    11 Files
  • 5
    Nov 5th
    0 Files
  • 6
    Nov 6th
    0 Files
  • 7
    Nov 7th
    3 Files
  • 8
    Nov 8th
    59 Files
  • 9
    Nov 9th
    12 Files
  • 10
    Nov 10th
    6 Files
  • 11
    Nov 11th
    11 Files
  • 12
    Nov 12th
    1 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    9 Files
  • 15
    Nov 15th
    33 Files
  • 16
    Nov 16th
    53 Files
  • 17
    Nov 17th
    11 Files
  • 18
    Nov 18th
    14 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    26 Files
  • 22
    Nov 22nd
    22 Files
  • 23
    Nov 23rd
    10 Files
  • 24
    Nov 24th
    9 Files
  • 25
    Nov 25th
    11 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    20 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close