CVE-2008-4541

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Web Proxy Server
Vendor: CVE Published:; 13 October 2008

Summary

Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/45782

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/31691

vdb-entryx_refsource_BID

http://secunia.com/advisories/32227

third-party-advisoryx_refsource_SECUNIA

EPSS Score

15% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 13, 2008
Vulnerability Reserved
Oct 13, 2008