MiniShare Webserver Buffer Overflow Network Vulnerability

Summary

MiniShare 1.4.1 and prior versions are affected by a buffer overflow flaw. A remote attacker could execute arbitrary commands by sending a specially crafted file name in a the GET request. Version 1.3.4 and below do not seem to be vulnerable.

Solution

Upgrade to MiniShare 1.4.2 or higher.

Severity

Classification

CVE CVE-2004-2271
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Quantum DXi Remote 'root' Authentication Bypass Vulnerability
TFTPD small overflow
Helix RealServer Buffer Overrun
snmpXdmid overflow
SysV /bin/login buffer overflow (telnet)

MiniShare webserver buffer overflow

Take action and discover your vulnerabilities