COMMAND

    NSCA HTTPD

SYSTEMS AFFECTED

    Windows 3.x, 9x, NT running NSCA HTTPD 1.4 (for Windows)

PROBLEM

    Renos found following.  The bug can cause the server to crash. The
    problem seems to be that the server has MAX_STRING_LEN defined  to
    256 characters.   So, when a  client's request is  larger than 256
    characters the  server crases.   This was  tested on  a PC running
    Windows 3.11.   You have  to telnet  into the  server on  port  80
    (tested using 127.0.0.1 as the  IP address). Then using the  'GET'
    command insert  more than  256 characters.  The server  will crash
    showing a message asking the user to terminate the program.

    The server crashes showing no  messages to the clients screen.  In
    the Access  Log files  the client's  request seems  like a  normal
    request  nad  Ididn't  found  anything  on  Error  Log file.  Same
    happens  with  a  Web  Browser  calling  a file with more than 256
    characters.

SOLUTION

    Since the server is not for commercial use the bug doesn't seem to
    be serious.  As  for fix, it is  necessary to add bounds  checking
    code to the parser to ensure that the buffer cannot be overflowed.