CVE-2005-1507

4D WebSTAR 5.33 and 5.4 - Buffer Overflow via Long URL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1507. PoCs published by Braden Thomas.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the Tomcat Plugin of 4D WebStar 5.3.3 and 5.4. It attempts to overwrite a pointer and return addresses to redirect execution to shellcode, though the author notes it is unreliable.

Description

Buffer overflow in the Tomcat plugin in 4d WebSTAR 5.33 and 5.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long URL.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Braden Thomas · cremoteosx
https://www.exploit-db.com/exploits/25626

This exploit targets a buffer overflow vulnerability in the Tomcat Plugin of 4D WebStar 5.3.3 and 5.4. It attempts to overwrite a pointer and return addresses to redirect execution to shellcode, though the author notes it is unreliable.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Complex
Reliability
Racy
Target: 4D WebStar 5.3.3, 5.4
No auth needed
Prerequisites: Network access to the target server · Tomcat Plugin enabled on 4D WebStar
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/16154
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13538
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20478
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15278
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111541709402784&w=2

Scores

EPSS 0.0573
EPSS Percentile 92.1%

Details

Status published
Products (2)
4d/webstar 5.3.3
4d/webstar 5.4
Published May 11, 2005
Tracked Since Feb 18, 2026