5.0.609

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

watchfire

exploit available

NVD

Published: 2005-12-15

Updated: 2018-10-19

Summary

Buffer overflow in Watchfire AppScan QA 5.0.609 and 5.0.134 allows remote web servers to execute arbitrary code via an HTTP 401 response with a WWW-Authenticate header containing a long Realm field.

Vulnerable Configurations

Part	Description	Count
Application	Watchfire Watchfire Appscan QA 5.0.134 Watchfire Appscan QA 5.0.609	2

Exploit-Db

description	Watchfire AppScan QA 5.0.x Remote Code Execution Exploit PoC. CVE-2005-4270. Remote exploit for windows platform
id	EDB-ID:1374
last seen	2016-01-31
modified	2005-12-15
published	2005-12-15
reporter	Mariano NuÃ±ez
source	https://www.exploit-db.com/download/1374/
title	Watchfire AppScan QA 5.0.x - Remote Code Execution Exploit PoC

Summary

Vulnerable Configurations

Exploit-Db

References