CVE-2005-4270 – Watchfire AppScan QA 5.0.x - Remote Code Execution
https://notcve.org/view.php?id=CVE-2005-4270
Buffer overflow in Watchfire AppScan QA 5.0.609 and 5.0.134 allows remote web servers to execute arbitrary code via an HTTP 401 response with a WWW-Authenticate header containing a long Realm field. Desbordamiento de búfer en Wathfire AppScan QA 5.0.609 y 5.0.134 permite a servidores web remotos ejecutar código de su elección mediante una respuesta HTTP 401 con una cabecera WWW-Authenthicate conteniendo un campo Realm largo. • https://www.exploit-db.com/exploits/1374 http://secunia.com/advisories/18013 http://securityreason.com/securityalert/260 http://securitytracker.com/id?1015362 http://www.cybsec.com/vuln/CYBSEC_Security_Advisory_AppScanQA_RemoteCodeExec.pdf http://www.securityfocus.com/archive/1/419586/100/0/threaded http://www.securityfocus.com/bid/15873 http://www.vupen.com/english/advisories/2005/2933 •