Proxy-Pro Professional GateKeeper Web Proxy Buffer Overrun Vulnerability
BID:9716
Info
Proxy-Pro Professional GateKeeper Web Proxy Buffer Overrun Vulnerability
| Bugtraq ID: | 9716 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2004-0326 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 23 2004 12:00AM |
| Updated: | Jul 12 2009 03:06AM |
| Credit: | Discovery is credited to Iván Rodriguez Almuiña. |
| Vulnerable: |
Proxy-Pro Professional GateKeeper 4.7 |
| Not Vulnerable: | |
Discussion
Proxy-Pro Professional GateKeeper Web Proxy Buffer Overrun Vulnerability
Proxy-Pro Professional GateKeeper is prone to a remotely exploitable buffer overrun that may be triggered by passing HTTP GET requests of excessive length through the web proxy component. This could be exploited to execute arbitrary code in the context of the software.
Proxy-Pro Professional GateKeeper is prone to a remotely exploitable buffer overrun that may be triggered by passing HTTP GET requests of excessive length through the web proxy component. This could be exploited to execute arbitrary code in the context of the software.
Exploit / POC
Proxy-Pro Professional GateKeeper Web Proxy Buffer Overrun Vulnerability
The following exploits were made available:
The following exploits were made available:
Solution / Fix
Proxy-Pro Professional GateKeeper Web Proxy Buffer Overrun Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.