giFT-FastTrack HTTP Header Parser远程服务拒绝漏洞

漏洞信息详情

giFT-FastTrack HTTP Header Parser远程服务拒绝漏洞

• CNNVD编号：CNNVD-200412-055
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2004-0604
  
• 漏洞类型：
  
  
  其他
  
• 发布时间：
  
  2004-12-06
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-10-20
  
• 厂        商：
  
  gift-fasttrack
• 漏洞来源：
  Alan F. disclosed …

giFT-FastTrack 0.8.6及其早期版本的HTTP客户端和服务器存在漏洞。远程攻击者可能借助空搜索查询导致服务拒绝（崩溃），从而引发一个NULL取值。

The vendor has released version 0.8.7 addressing this issue.
Gentoo Linux has released advisory GLSA 200406-19 dealing with this issue. Please see the referenced advisory for further information. Users of affected packages are urged to execute the following as superuser:
emerge sync
emerge -pv “>=net-p2p/gift-fasttrack-0.8.7”
emerge “>=net-p2p/gift-fasttrack-0.8.7”
giFT-FastTrack giFT-FastTrack 0.8 .0

• giFT-FastTrack giFT-FastTrack-0.8.7.tar.gz
  
  http://download.berlios.de/gift-fasttrack/giFT-FastTrack-0.8.7.tar.gz

giFT-FastTrack giFT-FastTrack 0.8.1

• giFT-FastTrack giFT-FastTrack-0.8.7.tar.gz
  
  http://download.berlios.de/gift-fasttrack/giFT-FastTrack-0.8.7.tar.gz

giFT-FastTrack giFT-FastTrack 0.8.2

• giFT-FastTrack giFT-FastTrack-0.8.7.tar.gz
  
  http://download.berlios.de/gift-fasttrack/giFT-FastTrack-0.8.7.tar.gz

giFT-FastTrack giFT-FastTrack 0.8.3

• giFT-FastTrack giFT-FastTrack-0.8.7.tar.gz
  
  http://download.berlios.de/gift-fasttrack/giFT-FastTrack-0.8.7.tar.gz

giFT-FastTrack giFT-FastTrack 0.8.4

• giFT-FastTrack giFT-FastTrack-0.8.7.tar.gz
  
  http://download.berlios.de/gift-fasttrack/giFT-FastTrack-0.8.7.tar.gz

giFT-FastTrack giFT-FastTrack 0.8.5

• giFT-FastTrack giFT-FastTrack-0.8.7.tar.gz
  
  http://download.berlios.de/gift-fasttrack/giFT-FastTrack-0.8.7.tar.gz

giFT-FastTrack giFT-FastTrack 0.8.6

• giFT-FastTrack giFT-FastTrack-0.8.7.tar.gz
  
  http://download.berlios.de/gift-fasttrack/giFT-FastTrack-0.8.7.tar.gz

来源: XF
名称: gift-fasttrack-daemon-dos(16508)
链接:http://xforce.iss.net/xforce/xfdb/16508

来源: BID
名称: 10604
链接:http://www.securityfocus.com/bid/10604

来源: GENTOO
名称: GLSA-200406-19
链接:http://www.gentoo.org/security/en/glsa/glsa-200406-19.xml

来源: SECUNIA
名称: 11941
链接:http://secunia.com/advisories/11941/

来源: gift-fasttrack.berlios.de
链接:http://gift-fasttrack.berlios.de/

来源: developer.berlios.de
链接:http://developer.berlios.de/bugs/?func=detailbug&bug_id=1573&group_id=809