The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 200333 Buffer Overflow Vulnerabilities in Sun Java System Web Proxy Server 3.6 Service Pack 4

Guest Author
Product: Sun Java System Web Proxy Server 3.6 Service Pack 4

Buffer overflow vulnerabilities in the Sun Java System Web Proxy Server may allow a remote unprivileged user to crash either the Web Proxy Server or the Admin Server (of the Web Proxy Server) or execute arbitrary code with the privileges of the respective server processes.

Note: The recommended UIDs for the Web Proxy Server and Admin Server are "nobody" and "root" respectively, at installation time. However, the administrator may have used different UIDs from the recommended ones during installation.

Sun acknowledges with thanks, Matt Moore of Pentest Limited, for bringing these issues to our attention.

State: Resolved
First released: 29-Oct-2004

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.