BID:9871

MathoPD Remote Buffer Overflow Vulnerability

Info

MathoPD Remote Buffer Overflow Vulnerability

Bugtraq ID:	9871
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 15 2004 12:00AM
Updated:	Mar 15 2004 12:00AM
Credit:	This issue has been disclosed by aion <[email protected]>.
Vulnerable:	Mathopd Web Server 1.5 b13 Mathopd Web Server 1.4 p1 Mathopd Web Server 1.4 Mathopd Web Server 1.3 p8 Mathopd Web Server 1.3 p7 Mathopd Web Server 1.3 p6 Mathopd Web Server 1.3 p5 Mathopd Web Server 1.3 p4 Mathopd Web Server 1.3 p18 Mathopd Web Server 1.3 p17 Mathopd Web Server 1.3 Mathopd Web Server 1.2

Not Vulnerable:	Mathopd Web Server 1.5 b14 Mathopd Web Server 1.4 p3 Mathopd Web Server 1.4 p2

Discussion

MathoPD Remote Buffer Overflow Vulnerability

It has been reported that Mathopd is prone to a remote buffer overflow vulnerability. The issue arises due to a failure to check the bounds of a buffer storing user-supplied input.

It may be possible for attackers to leverage this vulnerability to execute arbitrary instructions on the affected system. Any code executed would be in the security context of the web server process.

Exploit / POC

MathoPD Remote Buffer Overflow Vulnerability

The following exploit has been supplied:

/data/vulnerabilities/exploits/mathopdExploit.c

Solution / Fix

MathoPD Remote Buffer Overflow Vulnerability

Solution:
Upgrades are available that are not vulnerable to this issue.

Mathopd Web Server 1.3 p4

Mathopd mathopd-1.5b14.tar.gz
http://www.mathopd.org/dist/mathopd-1.5b14.tar.gz

Mathopd Web Server 1.4

Mathopd mathopd-1.4p2.tar.gz
http://www.mathopd.org/dist/mathopd-1.4p2.tar.gz

Mathopd Web Server 1.4 p1

Mathopd mathopd-1.4p2.tar.gz
http://www.mathopd.org/dist/mathopd-1.4p2.tar.gz

References

MathoPD Remote Buffer Overflow Vulnerability

References:

Project Homepage (Mathopd)