header-logo
Suggest Exploit
vendor:
WebTrends Reporting Center
by:
Unknown
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: WebTrends Reporting Center
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: a:webtrends:reporting_center
Metasploit:
Other Scripts:
Platforms Tested: Windows, Linux, Solaris
Unknown

Buffer Overflow in WebTrends Reporting Center

An authenticated user can exploit a buffer overflow condition in WebTrends Reporting Center for Windows by submitting an oversized GET request. This can lead to the execution of arbitrary code with SYSTEM privileges or a denial of service attack.

Mitigation:

Apply the latest patch or upgrade to a version that is not affected by this vulnerability.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/4531/info

WebTrends Reporting Center is used to organize and present usage information for multiple server web environments. Reporting Center is available for Windows NT and 2000, Linux and Solaris.

An issue has been reported in WebTrends Reporting Center for Windows. An authenticated user of the system may be able to exploit a buffer overflow condition by submitting an oversized GET request. Exploitation may result in the execution of arbitrary code with SYSTEM privileges, or in a denial of service attack. 

http://targetmachine:1099/reports/(Long Char String)

Navigation

Suggest Exploit

Services By CQR