IBM HTTP Server Remote Overflow Vulnerability
Abstract: IBM HTTP Server Remote Overflow Vulnerability
Related procedures:
GET
Description:
Through long GET request to lead IBM HTTP Server Remote Overflow
Details:
IBM's HTTP server is a web server. In the use of the Windows NT version of Denial of Service loophole.
If a submitted more than 219 characters GET request, will lead to the server to respond, and the error. Work to restore normal services need to restart the application. Successful use of the vulnerability, the attacker may be victims of the implementation of any code on the mainframe. (However, this has not been fully substantiated.)
The following code only to test and study this loophole, if you will be used in improper ways please consequences own
$ Telnet target 80
GET /……( 216 ".") Aaa HTTP/1.0
The system will report the following error message:
*** STOP: 0×0000001e (0X00000005, 0X804B3A51, 0X00000000, 0X00000000) KMODE_EXCEPTI
ON_NOT_HANDLED.
*** Address 804B3A51 base at 80.4 million, Datastamp 384D9B17-ntoskrnl.exe
Note: targets in the host operating under Windows 2000.
Affected by the system
IBM HTTP Server 1.3.6.3
— TurboLinux Turbo Linux 3.0.1
— Sun Solaris 2.6
— SuSE Linux 6.1
— SuSE Linux 6.0
— RedHat Linux 6.0 sparc
— RedHat Linux 5.2 sparc
— Microsoft Windows NT 4.0
— IBM AIX 4.2.1
— Caldera OpenLinux 2.2
Solutions:
IBM has solved the 1.3.12 version of this issue, download Address:
Http://www-4.ibm.com/software/webservers/httpservers/download.html
↑ Back
