O'Reilly WebSite 'webfind.exe' Buffer Overflow Vulnerability

BID:1487

Info

O'Reilly WebSite 'webfind.exe' Buffer Overflow Vulnerability

Bugtraq ID: 1487
Class: Boundary Condition Error
CVE:
Remote: Yes
Local: Yes
Published: Jul 19 2000 12:00AM
Updated: Jul 19 2000 12:00AM
Credit: This vulnerability was posted to the Bugtraq mailing list by Network Associates Inc. as COVERT-2000-08 on July 19, 2000 . Credit for discovery of this problem is attributed to Barnaby Jack of COVERT Labs.
Vulnerable: OReilly Software WebSite Professional 2.4.9
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
 OReilly Software WebSite Professional 2.4
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
 OReilly Software WebSite Professional 2.3.18
Not Vulnerable: OReilly Software WebSite Professional 2.5
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0

Discussion

O'Reilly WebSite 'webfind.exe' Buffer Overflow Vulnerability

O'Reilly WebSite Professional is a web server package distributed by O'Reilly & Associates. Certain versions of this web server (the entire 2.X version line) ship with a utility containing a remotely exploitable buffer overflow. The utility in question is a search engine utility titled 'webfind.exe'. This program takes unchecked user input from a provided search page which can result in a remote user launching arbitrary commands on the server itself. The variable in question which is overwritten is QUERY_STRING derived from user 'keywords' for their search.

Exploit / POC

O'Reilly WebSite 'webfind.exe' Buffer Overflow Vulnerability

x

Solution / Fix

O'Reilly WebSite 'webfind.exe' Buffer Overflow Vulnerability

Solution:
Upgrade to at least version 2.5 of the software.


OReilly Software WebSite Professional 2.3.18

OReilly Software WebSite Professional 2.4

OReilly Software WebSite Professional 2.4.9

References

O'Reilly WebSite 'webfind.exe' Buffer Overflow Vulnerability

References:
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report