Vulnerabilities > CVE-2007-2881 - Buffer Overflow vulnerability in Sun Java Web Proxy Server

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

sun

critical

NVD

Published: 2007-05-29

Updated: 2017-07-29

Summary

Multiple stack-based buffer overflows in the SOCKS proxy support (sockd) in Sun Java Web Proxy Server before 4.0.5 allow remote attackers to execute arbitrary code via crafted packets during protocol negotiation.

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN Java System WEB Proxy Server - SUN Java System WEB Proxy Server 3.6 SUN Java System WEB Proxy Server 4.0 SUN Java System WEB Proxy Server 4.0.2 SUN Java System WEB Proxy Server 4.0.3 SUN Java System WEB Proxy Server 4.0.4	16

Saint

bid	24165
description	Sun Java System Web Proxy sockd buffer overflow
id	web_proxy_sunone
osvdb	35841
title	sun_java_proxy_sockd
type	remote

Summary

Vulnerable Configurations

Saint

References