[17737] in bugtraq
IBM HTTP Server 1.3.6 Remote Overflow
daemon@ATHENA.MIT.EDU (benjurry)
Thu Nov 23 15:34:08 2000
Mime-Version: 1.0
Content-Type: text/plain; charset="gb2312"
Message-Id: <001b01c0550b$52a1cab0$3300a8c0@dudu>
Date: Thu, 23 Nov 2000 13:05:41 +0800
Reply-To: benjurry <benjurry@YEAH.NET>
From: benjurry <benjurry@YEAH.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
Content-Transfer-Encoding: 8bit
Introduction:
IBM HTTP Server (IHS)powered by Apache is based on the Apache HTTP Server, which is the most popular server on the Web. This HTTP Server runs on AIX, Solaris, Windows NT, HP-UX, and Linux.
IBM HTTP Server can be found on vendor IBM site,
http://www.ibm.com
Problem:
On IBM HTTP Server 1.3.6(Win2k Simplify Chinese version),if you Get
/......(in my computer,216 ".")aaa,that is to say ,if you get a rwquest whit
219 characters, the Server will be BSOD,and the server display the following
message"
***STOP:0x0000001e(0X00000005,0X804B3A51,0X00000000,0X00000000)KMODE_EXCEPTI
ON_NOT_HANDLED.
***Address 804B3A51 base at 80400000,Datastamp 384D9B17-ntoskrnl.exe
Then the server must to be restart by Administrator.
Solution:
Update to IBM HTTP Server (IHS)1.3.12
Benjurry
2000.11.17
Share what I konw,Learn what I don't
