Here's the page we think you wanted. See search results instead:

Chat Live

Welcome

You are signed as:

My Profile
Logout

Please Confirm

Confirm your country to access relevant pricing, special offers, events, and contact information.

What are you looking for?

I'm looking for support Pro Oscilloscopes Handheld Spectrum Analyzers Compact Signal Generators Find a solution Get technical support Take a class Find us at events Premium used equipment KeysightCare Buy online

No product matches found - System Exception

Openwsman_HTTP_Basic_Authentication_Buffer_Overflow_attack

Strike ID:

G08-4q201

CVSS:

7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)

False Positive:

Variants:

Year:

2008

Description

This strike exploits a buffer overflow vulnerability in Openwsman. The vulnerability is due to improper processing of the HTTP basic authentication header. Remote attackers could exploit this vulnerability by sending HTTP requests with specially crafted header value. Successful exploitation would allow for arbitrary code injection and execution with the privileges of the security context of the current server process. In an attack case where code injection is not successful, the affected service can terminate abnormally.

CVE

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2234

References

http://secunia.com/advisories/31410

Openwsman_HTTP_Basic_Authentication_Buffer_Overflow_attack

Description

CVE

References

Bid