Home page logo
/

bugtraq logo Bugtraq mailing list archives

4D 6.7 DOS and Buffer Overflow Vulnerability
From: "Alfred Goldberg" <agoldberg () absoluteitsolutions com>
Date: Tue, 18 Jun 2002 12:59:54 -0400

Vulnerability Summary
---------------------
Problem:        The 4D 6.7 webserver has a buffer overflow condition.

Threat: An attacker could make the webserver crash and possibly execute
arbitrary code.

Affected Software:      4D Webserver version 6.7.3 verified.

Platform:        Windows verified.

Solution:       Update to the version mentioned below.


Vulnerability Description
-------------------------
4D is unable to handle long HTTP requests. The result is a termination of
the 4D application as the buffer is overflown.

Solution
-------
4D 6.8 seems to of addressed this problem.

Additional Information
----------------------
4D was contacted 20020606 but returned no reply.

This vulnerability was found and researched by
Dumitru Vlad


  By Date           By Thread  

Current thread:
  • 4D 6.7 DOS and Buffer Overflow Vulnerability Alfred Goldberg (Jun 19)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault