HTTP: Sambar Server search.pl Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Sambar Server, a free Web server. Attackers can include an oversized HTTP header within a maliciously crafted request to the server, which can allow them to execute arbitrary code.
Extended Description
A buffer overflow vulnerability has been reported in the Sambar web server. The issue is due to a boundary condition error in the POST data processing of the affected software. Immediate consequences of an attack may result in a denial of service condition. It may also be possible for the attacker to manipulate process memory and execute arbitrary code in the context of the vulnerable process.
Affected Products
Sambar server
Short Name
HTTP:OVERFLOW:SAMBAR-SEARCH
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Buffer CVE-2004-2086 Overflow Sambar Server bid:9607 search.pl
Release Date
06/23/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Sambar
CVSS Score
5.0