Remote Overflow in iPlanet Servers

By N-Stalker Team on August 9, 2002

Sun’s iPlanet Web Server, versions 6.0 and prior, has a buffer overrun vulnerability in its transfer chunking code. By issuing a malformed HTTP request, an attacker can crash the web server or possibly execute code under the service’s privileges. Sun has issued a patch, and integrated it into 4.1 SP11 and 6.0 SP4, available here.

(N-Stalker Security Force)

This entry was posted in Previous Security Advisories. Bookmark the permalink.