StarOffice StarScheduler Remote Buffer Overflow Vulnerability

StarOffice is a desktop office suite offered by Sun Microsystems. StarScheduler is a groupware server that ships with StarOffice and includes a webserver vulnerable to a remote buffer overflow attack. By default, the webserver runs as root and listens on port 801. When a GET request is made with a parameter longer than its predefined length, the stack will be overrun and the flow of execution altered. It is possible to overwrite the return address on the stack and have arbitrary code executed as root on the target host.

The consequence of this vulnerability being exploited is a remote root compromise.


 

Privacy Statement
Copyright 2010, SecurityFocus