SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Server/CGI)  >   Sun ONE/iPlanet Web Server Vendors:   Sun
Sun ONE Web Server Buffer Overflow on HP-UX Lets Remote Users Crash the Web Service
SecurityTracker Alert ID:  1008671
SecurityTracker URL:  http://securitytracker.com/id/1008671
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jan 12 2004
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 6.0 SP5 and prior versions
Description:   A buffer overflow vulnerability was reported in the Sun ONE Web Server (on the HP-UX platform only). A remote user can cause the web server to crash.

No further details were provided.

Impact:   A remote user can cause the web server to crash.
Solution:   Sun has released a fix as part of Sun ONE/iPlanet Web Server 6.0 Service Pack 6, available at:

http://wwws.sun.com/software/download/products/3f186391.html

Vendor URL:  sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57464 (Links to External Site)
Cause:   Boundary error
Underlying OS:  UNIX (HP/UX)
Underlying OS Comments:  Only HP-UX is affected

Message History:   None.


 Source Message Contents

Subject:  http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57464


http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57464

57464   Sun ONE Web Server Buffer Overflow Vulnerability May Result in "Denial of Service" 
(DoS)   9 Jan 2004

Sun reported that there is a buffer overflow vulnerability in the Sun ONE Web Server (on 
the HP-UX platform only).  A remote user can reportedly cause the web server to crash.

Sun ONE/iPlanet Web Server 6.0 Service Pack 5 and earlier is affected, but only on HP-UX.


Sun has released a fix as part of Sun ONE/iPlanet Web Server 6.0 Service Pack 6, available at:

http://wwws.sun.com/software/download/products/3f186391.html

-----

Sun Alert ID: 57464
Synopsis: Sun ONE Web Server Buffer Overflow Vulnerability May Result in "Denial of 
Service" (DoS)
Category: Security
Product: Sun ONE/iPlanet Web Server
BugIDs: 4823974
Avoidance: Upgrade
State: Resolved
Date Released: 09-Jan-2004
Date Closed: 09-Jan-2004
Date Modified:


 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC