This preview shows page 1. Sign up to view the full content.
Unformatted text preview: smaller chance of being exploited when experienced users are operating the system (never click suspicious links). 4. VU#771937 Apache mod_jk2 Host header Buffer Overflow Metric: 4.80 This flaw only grants the attacker the previlege equavilent to the webserver's, which is usually very limited. Also, since the flaw only exists in the legacy version of the program, it could be easily fixed by upgrading the software to the newest version. 5. VU#794236 SkypeFine Fails to Properly Sanitize User-Supplied Input Metric: 0.0 This is least vulnurable because in order for the attacker to exploit the system, the user has to have Skype installed and manually visit the malicious Skype profile page....
View Full Document
This note was uploaded on 06/02/2009 for the course CS 35L taught by Professor Eggert during the Spring '09 term at UCLA.
- Spring '09