PT-1999-1481 · Openlink · Openlink

Published

1999-10-15

Updated

2008-09-09

CVE-1999-0943

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions OpenLink version 3.2

Description A buffer overflow issue exists, allowing remote attackers to gain privileges by sending a long GET request to the web configurator.

Recommendations For OpenLink version 3.2, consider restricting access to the web configurator until a patch is available. As a temporary workaround, limit the length of GET requests to prevent exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-0943

Affected Products

Openlink

PT-1999-1481 · Openlink · Openlink

CVE-1999-0943

Related Identifiers

Affected Products

References · 3