Summary
The remote host is running Sambar Server, a web server package.
The remote version of this software contains a flaw that may allow an attacker to crash the service remotely.
A buffer overflow was found in the /search/results.stm application that comes shipped with Sambar Server.
Vulnerable versions: Sambar Server 4.x
Sambar Server 5.x
Sambar Server 6.0
Solution
Upgrade to current release of this software
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- BulletProof FTP Client '.bps' File Buffer Overflow Vulnerability
- ClamAV 'find_stream_bounds()' PDF File Processing Denial Of Service Vulnerability
- Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Linux)
- CUPS Subscription Incorrectly uses Guest Account DoS Vulnerability
- AzeoTech DAQFactory Denial of Service Vulnerability