Buffer overflow in the http_fetch function of HTTP Fetcher 1.0.0 and 1.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL request via a long (1) host, (2) referer, or (3) userAgent value.Referenceshttp://marc.info/?l=bugtraq&m=104195613529429&w=2http://www.iss.net/security_center/static/11000.phphttp://www.securityfocus.com/bid/6531http://www.linuxsecurity.com/content/view/104480/104/http://www.securityfocus.com/archive/1/305340http://secunia.com/advisories/7823
