Arbitrary Remote Code Execution Vulnerability in WildTangent Web Driver 4.0

A vulnerability in WildTangent Web Driver 4.0 could result in arbitrary remote code execution on the vulnerable system.

Ken Pfeil

June 3, 2004

1 Min Read
ITPro Today logo in a gray background | ITPro Today

Reported June 03, 2004, byNGSSoftware
 

VERSIONS AFFECTED

DESCRIPTION
A vulnerability in WildTangent Web Driver 4.0 could result in arbitrary remotecode execution on the vulnerable system. You could cause a number of bufferoverruns within the WildTangent package, namely within the WTHoster andWebDriver modules, by using any method that takes a filename as a parameter.You can obtain more information about this vulnerability on the discoverer's Web site.

VENDOR RESPONSE
WildTangent hasreleased version4.1, which isn't vulnerable to this condition.

CREDIT
Discovered by NGSSoftware.

Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.

You May Also Like