ID CVE-2004-2086
Summary Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a long query parameter.
References
Vulnerable Configurations
  • Sambar Sambar Server 6.0
    cpe:2.3:a:sambar:sambar_server:6.0
  • Sambar Sambar Server 6.0 Beta 3
    cpe:2.3:a:sambar:sambar_server:6.0:beta3
CVSS
Base: 5.0 (as of 25-05-2005 - 13:03)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
exploit-db via4
  • description Sambar Server 6.0 Results.STM Post Request Buffer Overflow Vulnerability. CVE-2004-2086. Dos exploit for windows platform
    id EDB-ID:23664
    last seen 2016-02-02
    modified 2004-02-09
    published 2004-02-09
    reporter nd@felinemenace.org
    source https://www.exploit-db.com/download/23664/
    title Sambar Server 6.0 Results.STM Post Request Buffer Overflow Vulnerability
  • description Sambar 6 Search Results Buffer Overflow. CVE-2004-2086. Remote exploit for windows platform
    id EDB-ID:16756
    last seen 2016-02-02
    modified 2010-02-13
    published 2010-02-13
    reporter metasploit
    source https://www.exploit-db.com/download/16756/
    title Sambar 6 - Search Results Buffer Overflow
metasploit via4
description This module exploits a buffer overflow found in the /search/results.stm application that comes with Sambar 6. This code is a direct port of Andrew Griffiths's SMUDGE exploit, the only changes made were to the nops and payload. This exploit causes the service to die, whether you provided the correct target or not.
id MSF:EXPLOIT/WINDOWS/HTTP/SAMBAR6_SEARCH_RESULTS
last seen 2019-03-24
modified 2017-11-08
published 2010-02-13
reliability Normal
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/sambar6_search_results.rb
title Sambar 6 Search Results Buffer Overflow
packetstorm via4
data source https://packetstormsecurity.com/files/download/86296/sambar6_search_results.rb.txt
id PACKETSTORM:86296
last seen 2016-12-05
published 2010-02-15
reporter H D Moore
source https://packetstormsecurity.com/files/86296/Sambar-6-Search-Results-Buffer-Overflow.html
title Sambar 6 Search Results Buffer Overflow
refmap via4
bid 9607
confirm http://www.sambar.com/security.htm
osvdb 5786
sectrack 1008979
vuln-dev 20040207 Sambar 6.0 stack overflow
xf sambar-http-post-bo(15071)
Last major update 05-09-2008 - 16:43
Published 06-02-2004 - 00:00
Last modified 10-07-2017 - 21:31
Back to Top