PDGSoft Shopping Cart Multiple Buffer Overflow Vulnerabilities

The two executables with the vulnerabilities are redirect.exe and changepw.exe both of which are accessible over the web. If supplied an overly long query string both will overflow an internal buffer overwriting the saved return address.


 

Privacy Statement
Copyright 2010, SecurityFocus