FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Overflow error in fetch

Affected packages
5.3 <= FreeBSD < 5.3_1
5.2.1 <= FreeBSD < 5.2.1_12
5.1 <= FreeBSD < 5.1_18
5.0 <= FreeBSD < 5.0_22
4.10 <= FreeBSD < 4.10_4
4.9 <= FreeBSD < 4.9_13
4.8 <= FreeBSD < 4.8_26
FreeBSD < 4.7_28

Details

VuXML ID 759b8dfe-3972-11d9-a9e7-0001020eed82
Discovery 2004-11-14
Entry 2004-11-18

An integer overflow condition in fetch(1) in the processing of HTTP headers can result in a buffer overflow.

A malicious server or CGI script can respond to an HTTP or HTTPS request in such a manner as to cause arbitrary portions of the client's memory to be overwritten, allowing for arbitrary code execution.

References

Bugtraq ID 11702
CVE Name CVE-2004-1053
FreeBSD Advisory SA-04:16.fetch

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.