Intrusion Prevention

Sambar.Results.STM.Post.Request.Buffer.Overflow

Description

This indicates a possible attempt to exploit a buffer overflow in the Sambar 6 web server. Sambar is an All-in-One server for Windows or Linux, that includes servers for irc, ftp, tftp, dns, dhcp etc. A boundary condition error in the /search/results.stm application, can occur during the processing of data received with the POST command. A remote attacker can cause a buffer overflow resulting in a denial of service, and may be able to execute arbitrary code on the system.

Affected Products

Sambar Server 6.0 Beta3
Sambar Server 6.0

Impact

System compromise, arbitrary code execution.

Recommended Actions

Update to version 6.4 or newer.

CVE References

CVE-2004-2086