CVE-2002-0360

Description

Buffer overflow in Sun AnswerBook2 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long filename argument to the gettransbitmap CGI program.

Affected products

• sun / solaris_answerbook21.4 – 1.4
• sun / solaris_answerbook21.4.1 – 1.4.1
• sun / solaris_answerbook21.4.2 – 1.4.2
• sun / solaris_answerbook21.4.3 – 1.4.3

References

• MISChttp://www.iss.net/security_center/static/9117.php
• MAILING_LISThttp://marc.info/?l=vulnwatch&m=102194510509450&w=2
• MAILING_LISThttp://marc.info/?l=bugtraq&m=102198846905064&w=2
• VENDOR_ADVISORYhttp://www.eSecurityOnline.com/advisories/eSO5063.asp
• MISChttp://www.securityfocus.com/bid/4784