Vulnerabilities > CVE-2003-0762 - Remote Security vulnerability in Foxweb 2.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Buffer overflow in (1) foxweb.dll and (2) foxweb.exe of Foxweb 2.5 allows remote attackers to execute arbitrary code via a long URL (PATH_INFO value).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | FoxWeb 2.5 PATH_INFO Remote Buffer Overrun Vulnerability. CVE-2003-0762. Dos exploit for windows platform |
id | EDB-ID:23102 |
last seen | 2016-02-02 |
modified | 2003-06-27 |
published | 2003-06-27 |
reporter | pokleyzz |
source | https://www.exploit-db.com/download/23102/ |
title | FoxWeb 2.5 PATH_INFO Remote Buffer Overrun Vulnerability |
Nessus
NASL family | CGI abuses |
NASL id | FOXWEB_DLL.NASL |
description | The foxweb.dll or foxweb.exe CGI is installed. Versions 2.5 and below of this CGI program have a remote stack buffer overflow. A remote attacker could use this to crash the web server, or possibly execute arbitrary code. ** Since Nessus just verified the presence of the CGI but could ** not check the version number, this might be a false alarm. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11939 |
published | 2003-12-04 |
reporter | This script is Copyright (C) 2003-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/11939 |
title | Foxweb foxweb.exe / foxweb.dll Long URL Remote Overflow |