Sun Java System Web Proxy sockd buffer overflow

Added: 05/30/2007
CVE: CVE-2007-2881
BID: 24165
OSVDB: 35841

Background

The Sun Java System Web Proxy Server (formerly Sun ONE Web Proxy Server) provides content filtering and caching capabilities. It is a companion product to the Sun Java System Web Server.

Problem

A buffer overflow vulnerability in Sun Java System Web Proxy Server allows a remote attacker to execute arbitrary commands by sending a specially crafted SOCKS request during protocol negotiation.

Resolution

Upgrade to Sun Java System Web Proxy Server 4.0.5 or higher.

References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=536
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102927-1

Limitations

Exploit works on Sun Java System Web Proxy Server 4.0.3 and 4.0.4 on Windows or Red Hat Enterprise Linux 3.0 Update 5. For Windows targets, target must be able to connect back to SAINTexploit host for shell code retrieval.

Platforms

Windows
Linux

Back to exploit index