TUCoPS :: Web :: Servers :: pws4~1.htm

Personal Web sharing v1.5.5 input overflow 
Vulnerability

    Personal Web sharing

Affected

    Personal Web sharing v1.5.5, probably earlier.

Description

    Jass Seljamaa  found following.   Personal Web  Sharing extension,
    which ships with MacOS 9, can\'t handle a request longer than 6000
    characters.   A request,  which contains  6000 or  more characters
    seems to stop the file sharing, probably to avoid a system freeze.
    Web sharing can easily be started up again in seconds.

    Exploit:

        http://fileserver/?aaaaaaaaa... [approx. 6000 characters]

Solution

    It was the glob hole and it is now fixed.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH