Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:8101
HistoryMar 18, 2005 - 12:00 a.m.

[SA13674] Initial Redirect URL Handling Off-By-One Vulnerability

2005-03-1800:00:00
vulners.com
15

Want a new IT Security job?

Vacant positions at Secunia:
http://secunia.com/secunia_vacancies/


TITLE:
Initial Redirect URL Handling Off-By-One Vulnerability

SECUNIA ADVISORY ID:
SA13674

VERIFY ADVISORY:
http://secunia.com/advisories/13674/

CRITICAL:
Less critical

IMPACT:
Unknown

WHERE:
>From local network

SOFTWARE:
Initial Redirect 0.x
http://secunia.com/product/4789/

DESCRIPTION:
A vulnerability with an unknown impact has been reported in Initial
Redirect.

The vulnerability is caused due to an off-by-one error when passing
overly long URLs.

SOLUTION:
Update to version 0.3:
http://www.vanheusden.com/ir/ir-0.3.tgz

PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.


About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.