Multiple stack-based buffer overflows in the filter service (aka k9filter.exe) in Blue Coat K9 Web Protection 3.2.44 with Filter 3.2.32 allow (1) remote attackers to execute arbitrary code via a long HTTP Referer header to the K9 Web Protection Administration interface and (2) man-in-the-middle attackers to execute arbitrary code via an HTTP response with a long HTTP version field.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2008-08-01 07:41
Updated : 2018-10-16 09:46
NVD link : CVE-2007-2952
Mitre link : CVE-2007-2952
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
blue_coat_systems
- filter
- k9_web_protection