VULHUB ™

Webresolve is a freely available, open source web log review software package. It is designed to reverse-resolve IP addresses in HTTPd logs, and print the hostnames. Under some circumstances, it may be possible to cause a client-side overflow in Webresolve. Due to insufficient bounds checking, when Webresolve attempts to reverse-resolve an IP address, and the response from a nameserver is of excessive length, a buffer overflow occurs. This overflow could be used to overwrite stack memory, and execute attacker-supplied instructions.

Webresolve is a freely available, open source web log review software package. It is designed to reverse-resolve IP addresses in HTTPd logs, and print the hostnames. Under some circumstances, it may be possible to cause a client-side overflow in Webresolve. Due to insufficient bounds checking, when Webresolve attempts to reverse-resolve an IP address, and the response from a nameserver is of excessive length, a buffer overflow occurs. This overflow could be used to overwrite stack memory, and execute attacker-supplied instructions.