FAQ
{01.15.025} Cross - Oracle OAS ndwfn4.so library buffer overflow
The ndwfn4.so shared library shipped with Oracle's Application Server
version 4.0.8.2 has been found to contain a remotely exploitable buffer
overflow in the handling of long URL requests. The ndwfn4.so library is
designed to plug into iPlanet Web Server (tested with 4.x).
No patches have been made available.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0149.html

--
Please see the official ORACLE-L FAQ: http://www.orafaq.com
--
Author: Jay Weinshenker
INET: jweinshe_at_concentric.net

Fat City Network Services -- (858) 538-5051 FAX: (858) 538-5051
San Diego, California -- Public Internet access / Mailing Lists
--------------------------------------------------------------------

To REMOVE yourself from this mailing list, send an E-Mail message
to: ListGuru_at_fatcity.com (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from). You may
also send the HELP command for other information (like subscribing).

Search Discussions

Related Discussions

Discussion Navigation
viewthread | post
Discussion Overview
grouporacle-l @
categoriesoracle
postedApr 12, '01 at 9:42p
activeApr 12, '01 at 9:42p
posts1
users1
websiteoracle.com

1 user in discussion

Jay Weinshenker: 1 post

People

Translate

site design / logo © 2022 Grokbase