BigAnt IM Server HTTP GET Request Buffer Overflow Vulnerability

BigAnt IM Server is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.

An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the server. Failed exploit attempts will result in a denial-of-service condition.

BigAnt IM Server 2.50 is vulnerable; other versions may also be affected.

NOTE: This issue may be related to the vulnerability described in BID 28795 (BigAnt IM Server HTTP GET Request Remote Buffer Overflow Vulnerability). We will update or retire this BID if further analysis or reports reveal that the two records represent the same vulnerability.


 

Privacy Statement
Copyright 2010, SecurityFocus