Netscape Enterprise Server Accept Header Remote Overflow
Medium Nessus Plugin ID 10154
SynopsisThe remote service is prone to a buffer overflow.
DescriptionThe remote web server seems to crash when it is issued a too long argument to the 'Accept:' command :
GET / HTTP/1.0 Accept: <thousands of chars>/gif
This may allow an attacker to execute arbitrary code on the remote system.
SolutionUpgrade to a version of Netscape Enterprise Server greater than 3.6.