HTTP: Webster HTTP Server Long Request Buffer Overflow
This signature detects attempts to exploit a known flaw in the Webster HTTP server. An attacker can send an overlong URL which could result in arbitrary code execution.
Extended Description
A buffer overrun has been discovered in Webster HTTP server when processing malicious URLs. It is possible to trigger this vulnerability by passing an affected server a malconstructed URL of excessive length. Successful exploitation of this issue may allow an attacker to overwrite sensitive locations in memory with malicious values. This may result in the execution of arbitrary code with the privileges of Webster.
Affected Products
Webster webster_http_server
References
BugTraq: 6289
CVE: CVE-2002-2268
URL: http://www.netdave.com/webster/webster.htm http://www.microsoft.com/msj/archive/s25f.aspx
Short Name
HTTP:EXPLOIT:WEBSTER-URL-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Buffer CVE-2002-2268 HTTP Long Overflow Request Server Webster bid:6289
Release Date
12/07/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Webster
CVSS Score
9.4