Vulnerability reported in Sun Java System Web Proxy
Vulnerability has been reported in Java System Web Proxy. Remote exploitation of multiple stack based buffer overflows allows unauthenticated attackers to execute arbitrary code with super user privileges. The problem has been reported within sockd daemon and it can lead to buffer overflow by manipulation of bytes during protocol negotiation.
Arbitary code can be executed with the privileges of user running sockd. No kind of authentication is required and the attacker just needs to open a session with the SOCKS server. In order to counter this threat SOCKS proxy server should be disabled and firewalls should also be deployed.