Home page logo

bugtraq logo Bugtraq mailing list archives

4D 6.7 DOS and Buffer Overflow Vulnerability
From: "Alfred Goldberg" <agoldberg () absoluteitsolutions com>
Date: Tue, 18 Jun 2002 12:59:54 -0400

Vulnerability Summary
Problem:        The 4D 6.7 webserver has a buffer overflow condition.

Threat: An attacker could make the webserver crash and possibly execute
arbitrary code.

Affected Software:      4D Webserver version 6.7.3 verified.

Platform:        Windows verified.

Solution:       Update to the version mentioned below.

Vulnerability Description
4D is unable to handle long HTTP requests. The result is a termination of
the 4D application as the buffer is overflown.

4D 6.8 seems to of addressed this problem.

Additional Information
4D was contacted 20020606 but returned no reply.

This vulnerability was found and researched by
Dumitru Vlad

  By Date           By Thread  

Current thread:
  • 4D 6.7 DOS and Buffer Overflow Vulnerability Alfred Goldberg (Jun 19)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]