Sun Java System Web Server Multiple Vulnerabilities (Windows)

This host has Sun Java Web Server running which is prone to multiple vulnerabilities.

- An error exists in WebDAV implementation in webservd and can be exploited to cause Stack-based buffer overflow via long URI in an HTTP OPTIONS request. - An unspecified error that can be exploited to cause a heap-based buffer overflow which allows remote attackers to discover process memory locations and execute arbitrary code by sending a process memory address via crafted data. - An error exists in in webservd and admin server that can be exploited to overflow a buffer and execute arbitrary code on the system or cause the server to crash via a long string in an 'Authorization: Digest' HTTP header.

Sun Java System Web Server version 7.0 update 7 on Windows.

No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.