Sun ONE Vulnerability Comes to Light
A vulnerability in the Sun ONE Application Server can give an attacker control over the Web server.Security researchers have discovered a vulnerability in Sun Microsystems Inc.s Sun ONE Application Server that can give an attacker control over the Web server. The vulnerability, found by researchers at @stake Inc., in Cambridge, Mass., is a stack buffer overflow in the Connector Module. The module, which ships with the Application Server, is a Netscape API plugin that integrates the Sun ONE Web Server with the Application Server. The module uses a static buffer to handle the incoming request URI (Universal Resource Identifier). All an attacker needs to do to exploit this flaw is send an overly long request URI to the module. This will overwrite the saved extended instruction pointer register.
The vulnerability affects versions 6.0 and 6.5 of the Application Server. Sun, based in Santa Clara, Calif., has only produced a patch for 6.5, however. That fix is included in Service Pack 1 for the server, which is downloadable at Suns Web site.
Find white papers on security.