CVE-2008-4541

CWE-119 — Buffer Overflow3 documents3 sources

Severity

10.0CRITICAL

EPSS

15.8%

top 5.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Java System WEB Proxy Server

Timeline

PublishedOct 13

Latest updateMay 2

Description

Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDsun/java_system_web_proxy_server8 versions+7

🔴Vulnerability Details

GHSA

GHSA-vwqv-ff3g-jgwf: Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4↗2022-05-02

▶

CVEList

CVE-2008-4541: Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4↗2008-10-13

▶