OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Foundstone Labs (labs_at_foundstone.com)
Date: Tue Sep 10 2002 - 17:39:02 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    ------------------------------------------------------------------------
    -----
    FS Advisory ID: 091002-SVWS

    Release Date: September 10, 2002

    Product: Savant Web Server 3.1 and previous

    Vendors: Savant (http://savant.sourceforge.net)
                             
    Type: Buffer Overflow

    Severity: The ability to gain remote access to the
    system

    Authors: Robin Keir (robin.keirfoundstone.com)

    Platforms: Microsoft Windows Variants

    CVE Candidate: CAN-2002-1120

    Foundstone Advisory: http://www.foundstone.com/advisories
    ------------------------------------------------------------------------
    -----

    Overview:

    A buffer overflow exists in versions 3.1 and previous of Savant Web
    Server.
    Exploitation of this vulnerability allows remote execution of arbitrary
    code
    with daemon privileges.

    Detailed Description:

    Sending a GET request containing a URL of approx. 291 characters or more
    causes
    Savant Web Server to crash. Exploitation is possible and proof of
    concept code
    has been authored to demonstrate this problem.

    Vendor Response:

    Savant was contacted on August 16th, 2002 regarding this vulnerability.

    Solution:

    Disable the Savant Web Server until a patch is made available by the
    vendor.

    FoundScan has been updated to check for this vulnerability. For more
    information on FoundScan, see the Foundstone website:
    http://www.foundstone.com

    Disclaimer:

    The information contained in this advisory is copyright (c) 2002
    Foundstone, Inc. and is believed to be accurate at the time of
    publishing, but no representation of any warranty is given,
    express, or implied as to its accuracy or completeness. In no
    event shall the author or Foundstone be liable for any direct,
    indirect, incidental, special, exemplary or consequential
    damages resulting from the use or misuse of this information.
    This advisory may be redistributed, provided that no fee is
    assigned and that the advisory is not modified in any way.