Buffer Overflow Vulnerability in Sun Java System Web Proxy Server
CVE-2004-1350

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Web Proxy Server
Vendor: CVE Published:; 30 October 2004

Summary

Multiple buffer overflow vulnerabilities have been identified in Sun Java System Web Proxy Server (formerly known as Sun ONE Proxy Server) versions 3.6 through 3.6 SP4. These vulnerabilities allow remote attackers to potentially execute arbitrary code by exploiting these overflows, specifically through unknown vectors such as CONNECT requests. It is critical for users of this product to apply patches and mitigations promptly to safeguard their systems from potential exploitation.

References

http://www.securityfocus.com/bid/11566

vdb-entryx_refsource_BID

http://securitytracker.com/id?1012005

vdb-entryx_refsource_SECTRACK

http://www.pentest.co.uk/documents/ptl-2004-06.html

x_refsource_MISC

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Jan 6, 2005
Vulnerability published
Oct 30, 2004