CVE-2008-4541

Description

Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.

Software From Fixed in
sun / java_system_web_proxy_server 4.0 4.0.x
sun / java_system_web_proxy_server 4.0-sp1 4.0-sp1.x
sun / java_system_web_proxy_server 4.0.1 4.0.1.x
sun / java_system_web_proxy_server 4.0.1-sp1 4.0.1-sp1.x
sun / java_system_web_proxy_server 4.0.1-sp2 4.0.1-sp2.x
sun / java_system_web_proxy_server 4.0.1-sp3 4.0.1-sp3.x
sun / java_system_web_proxy_server 4.0.1-sp4 4.0.1-sp4.x
sun / java_system_web_proxy_server 4.0.1-sp5 4.0.1-sp5.x
sun / java_system_web_proxy_server 4.0.1-sp6 4.0.1-sp6.x
sun / java_system_web_proxy_server 4.0.2 4.0.2.x
sun / java_system_web_proxy_server 4.0.2-sp1 4.0.2-sp1.x
sun / java_system_web_proxy_server 4.0.2-sp2 4.0.2-sp2.x
sun / java_system_web_proxy_server 4.0.2-sp3 4.0.2-sp3.x
sun / java_system_web_proxy_server 4.0.2-sp4 4.0.2-sp4.x
sun / java_system_web_proxy_server 4.0.2-sp5 4.0.2-sp5.x
sun / java_system_web_proxy_server 4.0.2-sp6 4.0.2-sp6.x
sun / java_system_web_proxy_server 4.0.3 4.0.3.x
sun / java_system_web_proxy_server 4.0.3-sp1 4.0.3-sp1.x
sun / java_system_web_proxy_server 4.0.3-sp2 4.0.3-sp2.x
sun / java_system_web_proxy_server 4.0.3-sp3 4.0.3-sp3.x
sun / java_system_web_proxy_server 4.0.3-sp4 4.0.3-sp4.x
sun / java_system_web_proxy_server 4.0.3-sp5 4.0.3-sp5.x
sun / java_system_web_proxy_server 4.0.3-sp6 4.0.3-sp6.x
sun / java_system_web_proxy_server 4.0.4 4.0.4.x
sun / java_system_web_proxy_server 4.0.4-sp1 4.0.4-sp1.x
sun / java_system_web_proxy_server 4.0.4-sp2 4.0.4-sp2.x
sun / java_system_web_proxy_server 4.0.4-sp3 4.0.4-sp3.x
sun / java_system_web_proxy_server 4.0.4-sp4 4.0.4-sp4.x
sun / java_system_web_proxy_server 4.0.4-sp5 4.0.4-sp5.x
sun / java_system_web_proxy_server 4.0.4-sp6 4.0.4-sp6.x
sun / java_system_web_proxy_server 4.0.5 4.0.5.x
sun / java_system_web_proxy_server 4.0.5-sp1 4.0.5-sp1.x
sun / java_system_web_proxy_server 4.0.5-sp2 4.0.5-sp2.x
sun / java_system_web_proxy_server 4.0.5-sp3 4.0.5-sp3.x
sun / java_system_web_proxy_server 4.0.5-sp4 4.0.5-sp4.x
sun / java_system_web_proxy_server 4.0.5-sp5 4.0.5-sp5.x
sun / java_system_web_proxy_server 4.0.5-sp6 4.0.5-sp6.x
sun / java_system_web_proxy_server 4.0.6 4.0.6.x
sun / java_system_web_proxy_server 4.0.7 4.0.7.x