Hole found in Sun server software

Advertisement (Why?)

A flaw in Sun Microsystems' Web server software could allow hackers to gain control of Web sites, a security consulting company warned.

Cambridge, Mass.-based @Stake issued a bulletin late Thursday on the vulnerability in Sun ONE Application Server. The hole is in the software's Connector Module, a Netscape server plug-in that links Sun ONE Application Server with Sun ONE Web Server, formerly known as iPlanet Enterprise Server. The module uses a buffer of fixed size to register information requests sent to the server. By sending an especially long string of data, an attacker could overwrite data on the server and so take control of the machine.

"This is a classic stack buffer overflow, and a remote attacker can gain control of the running Web server," @Stake said in the alert. The company said it notified Sun of the vulnerability last May, but received no response. @Stake representatives did not respond to a request for comment. Buffer vulnerabilities have become an increasingly common way for malicious computer users to attack servers.

The Sun flaw affects versions 6.0 and 6.5 of Application Server. @Stake said a patch available from Sun fixes the problem in version 6.5, but there is no equivalent patch for 6.0. The alert offered several workarounds for companies running 6.0. Deborah Andrade, product line manager for Sun, said the company issued the patch for 6.5 soon after it became aware of the flaw last year, and the fix has been incorporated in subsequent versions of Application Server.

News source: C|net

Changes:

Ornis:Added options to save logs to disk
Unk: Credit System Optional
Unk: Simple first time setup-wizard
Unk: Another Protocol change for better compatability to the Hybrid.
Team:and a number of tiny corrections, Fixes & graphical updates
Ornis: Sharedfilelist: linkcopy now for multiple selection too
Ornis: Searchwindow: Box for Directlinks (ED2k-Filelinks) supports multiple links
Ornis: Option to watch the clipboard for new ED2k-Links to enter to the download (after a prompt)
Ornis: Preferences new group: Security (filters), new filter: comments
Ornis:new column "Folder" in the sharedfiles list
Unk: lMule is now detected.
Unk: eMule clients v0.19 and below are now given a lower queue rating.. This is to push these client to upgrade due to the client publishing to the wrong server port that doesn't use the standard port.
Ornis:Added a hotmenu for faster control via keyboard. Press Alt+x !
Ornis: Completed file in transferlist will be opened when item is activated
Unk: No longer remove uploadclients with a unknown file name to be more compatable with Hybrid.
Unk: ShareFileList now uses the queue&upload list to create a bar to show how spread a complete file is in the network.
Unk: Fixed a bug in the wizard.
Unk: Added a Known Client List to the transfer window.
Unk: UploadClients with unknown filename is no longer removed for better compatablity to the Hybrid client.
Unk: SharedFile list now has a bar that is generated from the queue&upload list to show how well spread a file is.
Unk: Fixed a bug that caused eMule to crash if you got disconnect from your ISP.
Ornis:Commenticon should be more uptodate [Moosetea]
Ornis:Fix: saving alltime transferred size for files not limited to 4GB anymore
Ornis:Fixed bug that didnt allowed previews of movies with capital extention
Ornis: Preferences reorganized - new group: Display
Ornis:New option to switch on/off the rating/comment-icon in the downloadlist
Unk: Nondownloading sources are now updated a 10th of the time. (Based on Maella)
Unk: Name and Desc of servers are now updated. Max users is now a seperate column.
Unk: Radio button bug in wizard fixed.
Unk: Changing how eMule exchanges version type.
Ornis: Downloadlist can now be organized in categories, for switching/filter downloadlist, set different incoming folders, colors and perform commands on all files of the category...
Ornis: Date/Timeformat can be changed in the preferences.ini , strftime() compliant format string!!!
Ornis: Fixed: sourceexchange was more seldom under certain circumstances
Ornis: stopped downloads dont collect sources anymore
Unk: Fix bug that allowed a upload to upload for more then one chunk in Full Chunk Mode.
Unk: View transfering parts in uploadlist. (Lonestar)
Ornis: middle-mouseclick on a comment-symbol opens the commentlist
Unk: Upload bars are now 3D.
Ornis: fixed auto-versioncheck [thx bluecow]
Ornis: added display of the last time data was received (written to disk) for every file (downloadcolumn, tooltip, filedetaildialog)
Unk: Completely changed the auto priority methods. Download and Shared prio is now completely seperate. Auto priority is now defaulted.
Unk: Merged in new DownloadListCtrl. (Maella)
Unk: Merged in view shared list of Hybrids. (Bluecow)
Unk: Don't try to update queue list at all if not visiable. (zz)
Unk: Another Update on the Min to Tray Button. (Zegzav)
Ornis:Upgraded Notifier, to support customizable skin, close- & history-function
Ornis: Doubleclick on a user in the commentlist starts a (Message)Chat to that user
Ornis:Fixed issue with limiting the downloadspeed at runtime and via commandline

(5 replies) #1 SHoTTa35 on 14 Mar 2003 - 20:01

and we thought MS software was the only one with probs.. LOL

#1.1 Jason on 14 Mar 2003 - 21:30

We did ? I personally thought every bit of software ever made has bugs.

#1.2 warr on 15 Mar 2003 - 01:57

[neoquote=#1.0 by SHoTTa35]and we thought MS software was the only one with probs.. LOL

[/neoquote] if you know a little bit of software, u won't spit such words. all have bugs. it is the number of the holes and the rate of being attacks that matters. when you have choices of more or less attacks, certainly you would go for the "more attacks", simply because it is from MS.

#1.3 JaggedFlame on 15 Mar 2003 - 03:40

There's never a choice between more or less attacks. There's a choice regarding balancing productivity with security issues. At the moment, while more people use Microsoft software, they trust that Microsoft is working hard enough to make the security issues close to irrelevant. But no, I never get two products shown to me and told that I can have the product with less attacks without impacting anything else. Not that easy.

#1.4 warr on 15 Mar 2003 - 04:08

if u deal with security issues, u will deal with the attacks. no attack, where to concern about the security? lay your trust on m$, when it itself may be the one who get your private info. they are working hard, which is announced around 2 or 3 years ago? (

) but the situation has never been improved.

#1.5 JaggedFlame on 15 Mar 2003 - 04:46

Yeah, keep telling yourself that. Go count the security bulletins from 2000, then count the ones from 2002. In fact, count the ones from 2003 and multiply by four and I'm sure you'll see an improvement over last year. I don't even think you read my post. I didn't say just ignore the attacks. I said you have to balance them with what you want from a product. I can go install MS-DOS and not have to deal with any security issues. That still doesn't help me.

#2 trance on 14 Mar 2003 - 20:10

ALL software has bugs. It's high time we all remember that.

#3 CoCoLUS on 14 Mar 2003 - 20:40

[quote]The hole is in the software's Connector Module, a Netscape server plug-in[/quote] netscape? what's that

(1 reply) #4 kioria on 14 Mar 2003 - 23:17

just an indication of how unreliable a software can be. microsoft. sun. apple. linux. unix. etc. nothing is impossible. and nothing is perfect.

#4.1 warr on 15 Mar 2003 - 04:09

there is a choice of better ones and worse ones, though no perfect ones.

#5 kioria on 15 Mar 2003 - 05:40

if theres a hole in the software, why don't they cover it up with glutac. they own. they stick/cover almost everything.

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Neowin.net