Apache htdigest user Variable Overfow

Network Security News – Monday, July 25, 2005 Events

Apache htdigest user Variable Overfow

A local overflow exists in Apache htdigest. The program fails to validate the length of the supplied 'user' variable resulting in a buffer overflow. With a specially crafted request, an attacker may be able to cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/18233