Test Kennung:	1.3.6.1.4.1.25623.1.0.100394
Kategorie:	Web Servers
Titel:	Savant Web Server Remote Buffer Overflow Vulnerability
Zusammenfassung:	A remote buffer-overflow vulnerability affects Savant Web Server. This; issue occurs because the application fails to validate the length of; user-supplied strings before copying them into finite process buffers.
Beschreibung:	Summary: A remote buffer-overflow vulnerability affects Savant Web Server. This issue occurs because the application fails to validate the length of user-supplied strings before copying them into finite process buffers. Vulnerability Impact: A remote attacker may leverage this issue to execute arbitrary code with the privileges of the affected webserver. This issue may facilitate unauthorized access or privilege escalation. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0338 BugTraq ID: 12429 http://www.securityfocus.com/bid/12429 Bugtraq: 20050204 Exploit For Savant Web Server 3.1 (tested on win2003) (Google Search) http://marc.info/?l=bugtraq&m=110756234611259&w=2 http://marc.info/?l=full-disclosure&m=110725682327452&w=2 http://marc.info/?l=full-disclosure&m=110728448025559&w=2 XForce ISS Database: savant-bo(19177) https://exchange.xforce.ibmcloud.com/vulnerabilities/19177
Copyright	Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.