PT-2008-4673 · Oracle+1 · Oracle Weblogic Server+1

Dong-Hun You

Published

2008-07-22

Updated

2017-09-29

CVE-2008-3257

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 10.3 and earlier

Description: The issue is a stack-based buffer overflow in the Apache Connector (mod wl) that allows remote attackers to execute arbitrary code via a long HTTP version string. This can be demonstrated by a string after "POST /.jsp" in an HTTP request.

Recommendations: For Oracle WebLogic Server versions 10.3 and earlier, consider updating to a version that is not affected by this issue. As a temporary workaround, restrict access to the Apache Connector (mod wl) to minimize the risk of exploitation.

Exploit

Fix

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2008-3257

Affected Products

Apache Connector

Oracle Weblogic Server

PT-2008-4673 · Oracle+1 · Oracle Weblogic Server+1

CVE-2008-3257

Weakness Enumeration

Related Identifiers

Affected Products

References · 16