• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Bradford Barrett Webalizer Reverse DNS Buffer Overflow Vulnerability

Webalizer is a web server log file program, which generates web site statistic log files. Log files produced include referrer information, browser information, web site Hits, Files accessed etc. These log files are generated in HTML format, so administrators can view them in a web browser.

A remote buffer overflow vulnerability has been reported in some versions of Webalizer. A malicious DNS server may exploit this condition if reverse DNS lookups are enabled.

The vendor has reported that this vulnerability is not exploitable for code execution, due to both memory layout of the process and character restrictions on the injected data. However some denial of service attacks may be possible.