{01.15.025} Cross - Oracle OAS ndwfn4.so library buffer overflow
The ndwfn4.so shared library shipped with Oracle's Application Server
version has been found to contain a remotely exploitable buffer
overflow in the handling of long URL requests. The ndwfn4.so library is
designed to plug into iPlanet Web Server (tested with 4.x).
No patches have been made available.
Source: SecurityFocus Bugtraq

Please see the official ORACLE-L FAQ: http://www.orafaq.com
Author: Jay Weinshenker
INET: jweinshe_at_concentric.net

Fat City Network Services -- (858) 538-5051 FAX: (858) 538-5051
San Diego, California -- Public Internet access / Mailing Lists

To REMOVE yourself from this mailing list, send an E-Mail message
to: ListGuru_at_fatcity.com (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from). You may
also send the HELP command for other information (like subscribing).

Search Discussions

Related Discussions

Discussion Navigation
viewthread | post
Discussion Overview
grouporacle-l @
postedApr 12, '01 at 9:42p
activeApr 12, '01 at 9:42p

1 user in discussion

Jay Weinshenker: 1 post



site design / logo © 2023 Grokbase