Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2005 David MaciejakOPENVAS:136141256231018212
HistoryNov 03, 2005 - 12:00 a.m.

4D WebStar Tomcat Plugin Remote Buffer Overflow flaw

2005-11-0300:00:00
Copyright (C) 2005 David Maciejak
plugins.openvas.org
17

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

Low

0.079 Low

EPSS

Percentile

94.3%

JSON

The remote 4D WebStar Web Server is vulnerable to a remote buffer overflow
in its Tomcat plugin.

# SPDX-FileCopyrightText: 2005 David Maciejak
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.18212");
  script_version("2023-08-01T13:29:10+0000");
  script_tag(name:"last_modification", value:"2023-08-01 13:29:10 +0000 (Tue, 01 Aug 2023)");
  script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
  script_cve_id("CVE-2005-1507");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/13538");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/14192");
  script_xref(name:"OSVDB", value:"16154");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_name("4D WebStar Tomcat Plugin Remote Buffer Overflow flaw");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2005 David Maciejak");
  script_family("Gain a shell remotely");
  script_dependencies("gb_webstar_detect.nasl");
  script_mandatory_keys("4d/webstar/detected");

  script_tag(name:"solution", value:"Upgrade to latest version of this software.");

  script_tag(name:"summary", value:"The remote 4D WebStar Web Server is vulnerable to a remote buffer overflow
  in its Tomcat plugin.");

  script_tag(name:"impact", value:"A malicious user may be able to crash service or execute
  arbitrary code on the computer with the privileges of the HTTP server.");

  script_tag(name:"qod_type", value:"remote_banner");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

CPE = "cpe:/a:4d:webstar";

include( "host_details.inc" );
include( "version_func.inc" );

if( ! port = get_app_port( cpe: CPE ) ) exit( 0 );
if( ! infos = get_app_version_and_location( cpe: CPE, port: port, exit_no_version: TRUE ) ) exit( 0 );

version = infos["version"];
location = infos["location"];

if( version_is_less_equal( version: version, test_version: "5.4" ) ) {
  report = report_fixed_ver( installed_version: version, fixed_version: "Update to the latest version", install_path: location );
  security_message( data: report, port: port );
  exit( 0 );
}

exit( 99 );

Related

cvelist 1
openvas 1
cve 1
nessus 1
nvd 1
cvelist
cvelist
CVE-2005-1507
2005-05-11 04:00:00
openvas
openvas
4D WebStar Tomcat Plugin Remote Buffer Overflow flaw
2005-11-03 00:00:00
cve
cve
CVE-2005-1507
2005-05-11 04:00:00
nessus
nessus
4D WebSTAR Tomcat Plugin Remote Buffer Overflow
2005-05-09 00:00:00
nvd
nvd
CVE-2005-1507
2005-05-11 04:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

Low

0.079 Low

EPSS

Percentile

94.3%

JSON
Related for OPENVAS:136141256231018212
cvelist1openvas1cve1nessus1nvd1