|
Family: Gain a shell remotely --> Category: destructive_attack
iWS shtml overflow Vulnerability Scan
Vulnerability Scan Summary Web server buffer overflow
Detailed Explanation for this Vulnerability Test
It is possible to make the remote iPlanet web server execute
arbitrary code when requesting a too long .shtml file (with a name
longer than 800 chars and containing computer code).
A possible hacker may use this flaw to gain a shell on this host
Solution : Disable server side parsing of HTML page (Content Management -> Parse HTML)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|