CVE-2007-2881

Published: May 29, 2007Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Multiple stack-based buffer overflows in the SOCKS proxy support (sockd) in Sun Java Web Proxy Server before 4.0.5 allow remote attackers to execute arbitrary code via crafted packets during protocol negotiation.

Affected (1)

Products: Sun: Java System Web Proxy Server

Sun

1 product

Java System Web Proxy Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sun Java System Web Proxy Server	Up to 4.0.4

References (18)

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=536

Source: cve@mitre.org

Patch

http://osvdb.org/35841

Source: cve@mitre.org

http://secunia.com/advisories/25405

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102927-1

Source: cve@mitre.org

Patch

http://www.kb.cert.org/vuls/id/746889

Source: cve@mitre.org

US Government Resource

http://www.securityfocus.com/bid/24165

Source: cve@mitre.org

http://www.securitytracker.com/id?1018130

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/1957

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/34524

Source: cve@mitre.org

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=536