CVE-2007-2881

Sažetak

Multiple stack-based buffer overflows in the SOCKS proxy support (sockd) in Sun Java Web Proxy Server before 4.0.5 allow remote attackers to execute arbitrary code via crafted packets during protocol negotiation.

Reference

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=536
http://osvdb.org/35841
http://secunia.com/advisories/25405
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102927-1
http://www.kb.cert.org/vuls/id/746889
http://www.securityfocus.com/bid/24165
http://www.securitytracker.com/id?1018130
http://www.vupen.com/english/advisories/2007/1957
https://exchange.xforce.ibmcloud.com/vulnerabilities/34524

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-07-2017 - 01:31

Objavljeno

29-05-2007 - 20:30