Canna SR_INIT Command Remote Overflow
High Nessus Plugin ID 11114
SynopsisThe remote language translation service has a buffer overflow vulnerability.
DescriptionThe remote host is running Canna, a service that processes Japanese input and translates it from kana to kanji.
It was possible to make the remote Canna server crash by sending a SR_INIT command with a very long string. A remote attacker could use this to crash the service, or possibly execute arbitrary code.
SolutionUpgrade to the latest version of the software.