W3Who buffer overflow

w3who-bo (18377)

High Risk

Description:

W3Who is vulnerable to a buffer overflow. A remote attacker could send a specially-crafted string containing 519 to 12571 characters to overflow a buffer and execute arbitrary code on the system.

Platforms Affected:

• Microsoft, W3Who

Remedy:

No remedy available as of November 29, 2008.

Consequences:

Gain Access

References:

• Full-Disclosure Mailing List, Mon Dec 06 2004 - 05:40:39 CST, Multiple vulnerabilities in w3who ISAPI DLL at http://archives.neohapsis.com/archives/fulldisclosure/2004-12/0157.html.
• JSI Inc, Web site, JSI FAQ at http://www.jsiinc.com/SUBL/tip5500/rh5519.htm.
• BID-11820: Microsoft Windows 2000 Resource Kit W3Who.DLL Multiple Remote Vulnerabilities
• CVE-2004-1134: Buffer overflow in the Microsoft W3Who ISAPI (w3who.dll) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long query string.

Reported:

Dec 06, 2004

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page