• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Avirt Gateway Suite HTTP Proxy Remote Buffer Overflow Vulnerability

Avirt Gateway Suite is a product combining the functionality of Avirt Gateway and Avirt Mail. It is designed as a single solution for collection of client machines sharing a single internet connection. It is available for the Microsoft Windows operating system.

The Gateway Suite includes an HTTP proxy which resides on port 8080 by default. The HTTP proxy is vulnerable to a buffer overflow condition which could be used by a remote user to cause a denial of service. There is also a possibility that this buffer overflow could be used to execute arbitrary code with SYSTEM level privileges.