Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web :: Servers :: pws4~1.htm

Personal Web sharing v1.5.5 input overflow



Vulnerability

    Personal Web sharing

Affected

    Personal Web sharing v1.5.5, probably earlier.

Description

    Jass Seljamaa  found following.   Personal Web  Sharing extension,
    which ships with MacOS 9, can\'t handle a request longer than 6000
    characters.   A request,  which contains  6000 or  more characters
    seems to stop the file sharing, probably to avoid a system freeze.
    Web sharing can easily be started up again in seconds.

    Exploit:

        http://fileserver/?aaaaaaaaa... [approx. 6000 characters]

Solution

    It was the glob hole and it is now fixed.


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH