📄 3638.txt
字号:
Rule:--Sid:3638--Summary:This event is generated when an attempt is made to exploit a vulnerabilityassociated with the Mercantec SoftCart CGI application.--Impact:Serious. Execution of arbitrary commands may be possible.--Detailed Information:Mercantec SoftCart software provides a shopping cart application for webstorefronts. A vulnerability exists when SoftCart.exe is supplied anoverly long parameter value. This can cause a buffer overflow and thesubsequent execution of remote software on a vulnerable server.--Affected Systems: Mercantec SoftCart 4.00b--Attack Scenarios:An attacker can craft a URI that contains an overly long parametervalue, causing a buffer overflow.--Ease of Attack:Simple.--False Positives:None known.--False Negatives:None known.--Corrective Action:Upgrade to the most current nonaffected version of the software.--Contributors:Sourcefire Vulnerability Research TeamJudy Novak <judy.novak@sourcefire.com>--Additional References:--⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -