November 4, 2004 — (WEB HOST INDUSTRY REVIEW) — According to reports, Sun Microsystems (sun.com) has warned of a security flaw that affects a component of its Java System Web Proxy Server, formerly called the Sun One Web Proxy Server. The proxy server, used by e-commerce sites, enterprises and service providers to cache and filter Web content, is a companion product to the Java System Web Server, Sun’s main server software.
The flaw is a buffer overflow vulnerability, reports say, opening the door for an attacker to gain access to a vulnerable system. Once an attacker gains access, they can crash either the Web Proxy Server process or the server’s Admin Server process, Sun says. It could even execute malicious code on the server with the privileges of the affected server process.
Last Friday, Sun released an advisory and a patch. Server versions 3.6 Service Pack 4 and earlier are affected.
About theWHIR.com
Since 2000, The Web Host Industry Review has made a name for itself as the foremost authority of the Web hosting industry providing reliable, insightful and comprehensive news, interviews and resources to the hosting community. TheWHIR is an iNET Interactive property. For more information on iNET Interactive, visit http://www.inetinteractive.com
No related posts.
