SecurityTeam US - MaxDB Web Administration Service Buffer Overflow Vulnerabilities


	Contribute : Advanced Search : Web Resources : Polls : File Repository

Poll
What would you like to see on SecurityTeamUS? More News Product Reviews HowTo's Custom RPM/Packages/Tools Other (Please leave comment) Results 96 votes \| 0 comments

Topics
Home Apache Apple Application Software Cisco Systems Database Servers Internet Explorer Linux Macromedia Microsoft Mozilla/Firefox Phishing/ID Theft Real Networks Security News Sun Microsystems Web Appliances/Devices Web Scripts Wi-Fi

Virus Alerts
17 Apr 2011 Troj/Mdrop-DKE 17 Apr 2011 Troj/Sasfis-O 17 Apr 2011 Troj/Keygen-FU 17 Apr 2011 Troj/Zbot-AOY 17 Apr 2011 Troj/Zbot-AOW 17 Apr 2011 W32/Womble-E 17 Apr 2011 Troj/VB-FGD 17 Apr 2011 Troj/FakeAV-DFF 17 Apr 2011 Troj/SWFLdr-W 17 Apr 2011 W32/RorpiaMem-A

Events
There are no upcoming events

Welcome to SecurityTeam US
Monday, February 06 2012 @ 12:50 PM EST

MaxDB Web Administration Service Buffer Overflow Vulnerabilities

Monday, May 02 2005 @ 10:54 AM EDT

Two vulnerabilities have been reported in MaxDB, which can be exploited by malicious people to compromise a vulnerable system.

1) A boundary error in the web administration service can be exploited to cause a stack-based buffer overflow by sending a specially crafted, overly long HTTP "GET" request containing a percent sign.

Successful exploitation may allow execution of arbitrary code.

2) A boundary error in the "getLockTokenHeader()" function in "WDVHandler_CommonUtils.c" in the WebDAV functionality of the web administration service can be exploited to cause a stack-based buffer overflow by sending a specially crafted HTTP request with the unlock method.

Successful exploitation may allow execution of arbitrary code.

The vulnerabilities have been reported in version 7.5.00.23. Other versions may also be affected.

SOFTWARE:
MaxDB 7.x

SOLUTION:
Update to version 7.5.00.26.
http://dev.mysql.com/downloads/maxdb/7.5.00.html

PROVIDED AND/OR DISCOVERED BY:
Discovered by anonymous person and reported via iDEFENSE.

ORIGINAL ADVISORY:
iDEFENSE:
http://www.idefense.com/application/poi/display?id=234&type=vulnerabilities
http://www.idefense.com/application/poi/display?id=235&type=vulnerabilities

VERIFY ADVISORY:
http://secunia.com/advisories/15109/

Secunia Security Advisories

What's Related
http://dev.mysql.com/do... http://www.idefense.com... http://www.idefense.com... http://secunia.com/advi... More from Database Servers

Story Options
Mail Story to a Friend Printable Story Format

MaxDB Web Administration Service Buffer Overflow Vulnerabilities | 0 comments | Create New Account

The following comments are owned by whomever posted them. This site is not responsible for what they say.

Dedicated Servers
Created this page in 0.17 seconds