CVE-2008-6520

Name of the Vulnerable Software and Affected Versions Xitami Web Server versions 2.5c2 and possibly other versions

Description The issue concerns multiple format string vulnerabilities in the SSI filter. These vulnerabilities can be triggered by remote attackers who send a URI that ends in .ssi, .shtm, or .shtml, which contains format string specifiers. This can cause a denial of service (daemon crash) and potentially allow the execution of arbitrary code due to incorrect logging code involving the sendfmt function in the SMT kernel.

Recommendations For Xitami Web Server version 2.5c2, consider disabling the SSI filter to prevent potential exploitation until a patch is available. As a temporary workaround, restrict access to URIs ending in .ssi, .shtm, or .shtml to minimize the risk of triggering the vulnerable logging code. Avoid using format string specifiers in URIs that may trigger the sendfmt function in the SMT kernel until the issue is resolved.