Vulnerabilities > CVE-2004-2086 - Buffer Overflow vulnerability in Sambar Server 6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a long query parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description Sambar Server 6.0 Results.STM Post Request Buffer Overflow Vulnerability. CVE-2004-2086. Dos exploit for windows platform id EDB-ID:23664 last seen 2016-02-02 modified 2004-02-09 published 2004-02-09 reporter [email protected] source https://www.exploit-db.com/download/23664/ title Sambar Server 6.0 Results.STM Post Request Buffer Overflow Vulnerability description Sambar 6 Search Results Buffer Overflow. CVE-2004-2086. Remote exploit for windows platform id EDB-ID:16756 last seen 2016-02-02 modified 2010-02-13 published 2010-02-13 reporter metasploit source https://www.exploit-db.com/download/16756/ title Sambar 6 - Search Results Buffer Overflow
Metasploit
description | This module exploits a buffer overflow found in the /search/results.stm application that comes with Sambar 6. This code is a direct port of Andrew Griffiths's SMUDGE exploit, the only changes made were to the nops and payload. This exploit causes the service to die, whether you provided the correct target or not. |
id | MSF:EXPLOIT/WINDOWS/HTTP/SAMBAR6_SEARCH_RESULTS |
last seen | 2020-05-23 |
modified | 2017-11-08 |
published | 2010-02-13 |
references | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2086 |
reporter | Rapid7 |
source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/http/sambar6_search_results.rb |
title | Sambar 6 Search Results Buffer Overflow |
Packetstorm
data source | https://packetstormsecurity.com/files/download/86296/sambar6_search_results.rb.txt |
id | PACKETSTORM:86296 |
last seen | 2016-12-05 |
published | 2010-02-15 |
reporter | H D Moore |
source | https://packetstormsecurity.com/files/86296/Sambar-6-Search-Results-Buffer-Overflow.html |
title | Sambar 6 Search Results Buffer Overflow |