Info

Disclosure

Dec 30, 2002

Discovery

Aug 22, 2002

Dates

Exploit

Dec 30, 2002

Solution

Unknown

Description

A remote overflow exists in John Frank's WN Server. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted GET request containing 1,600 or more characters, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
OSVDB: Web Related

Solution

Upgrade to version 2.4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

John Frank	WN Server	1.18.2
		2.0.0
		1.19.0
		1.19.1
		1.19.2
		1.19.3
		1.19.4
		1.19.5
		1.19.6
		1.19.7
		1.19.8
		1.19.9
		1.18.2
		2.0.0
		1.19.0
		1.19.1
		1.19.2
		1.19.3
		1.19.4
		1.19.5
		1.19.6
		1.19.7
		1.19.8
		1.19.9

References

ISS X-Force ID: 10223
CVE ID: 2002-1166 (see also: NVD)
Bugtraq ID: 5831
Other Advisory URL: http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0138.html
Vendor URL: http://hopf.math.nwu.edu/

Credit

badc0ded - badc0dedbadc0ded.com -
badc0ded - badc0dedbadc0ded.com -

Direct URL: http://osvdb.org/9836