N/A

Multiple buffer overflows in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP GET request with a long major version number, (2) an HTTP GET request to the HTTP proxy on port 3128 with a long major version number, (3) a long OK reply from a POP3 server, and (4) a long SMTP server response.

N/A

N/A

T. Hauck Jana Server HTTP服务器请求记录缓冲区溢出漏洞

Thomas Hauck Jana Server 2.x到2.2.1版本，和1.4.6及其更早版本存在多个缓冲区溢出漏洞。远程攻击者可以借助（1）带有超长主版本号的HTTP GET请求，（2）3128端口的HTTP代理HTTP GET请求，（3）超长P0P3服务器的OK回复，（4）超长SMTP服务器响应执行任意代码，并且可能执行任意代码。

N/A

N/A