ActivePerl perlIIS.dll Buffer Overflow Vulnerability

The effects of the overflow condition can be demonstrated by submitting a long request to the server:

$lynx http://host/cgi-bin/`perl -e 'print "A" x 360'`.plx

Exploits for both Linux and Windows32 have been provided by Indigo <indig0@talk21.com>

A proof of concept has been released by -- Sapient2003 - <sapient@qwest.net>


 

Privacy Statement
Copyright 2010, SecurityFocus