Intersystems Cache CSP (Cache Server Pages) Stack Overflow

CVE-2009-4068

    Type

  • Intersystems Caché CSP (Caché Server Pages) Stack Overflow

    • Severity

  • High

    • Affected products

  • Intersystems Caché CSP (Caché Server Pages) Stack Overflow

    • Date

  • 2010-12-17

    • CVE Reference

  • CVE-2009-4068
Read more

A stack based buffer overflow vulnerability exists in Intersystems Cache CSP (Cache Server Pages) Apache extension which can be exploited by a remote attacker to execute arbitrary code in the context of the web server’s user rights.

MWR InfoSecurity have made the decision to release this advisory due to the current existence of exploit code for the vulnerability within the public domain.

It should be noted that this vulnerability was also found recently by other security researchers and exploits were created for the Metasploit and Canvas exploitation frameworks. MWR InfoSecurity independently discovered this vulnerability and disclosed details of it to the vendor through CPNI in October 2009.

MWR InfoSecurity discovered and researched this issue on the Linux platform, whilst the Canvas and Metasploit exploits both target Microsoft Windows systems. This advisory details the vulnerability on the Linux platform and therefore provides further information about the issue that may be of value to interested parties.

The following links provide more information about this vulnerability as documented by other security researchers:

  • http://www.securityfocus.com/bid/37177
  • http://www.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/http/intersystems_cache.rb
  • https://forum.immunityinc.com/board/thread/1077/intersystems-cache-bof/?page=1#post-1077