Signature Detail
Short Name |
HTTP:INTELLITAMPER-DEFER-BO |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
IntelliTamper defer Attribute Buffer Overflow Vulnerability |
Release Date |
2012/11/05 |
Update Number |
2200 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: IntelliTamper defer Attribute Buffer Overflow Vulnerability
This signature detects attempts to exploit a known vulnerability in the IntelliTamper application. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the targeted application.
Extended Description
IntelliTamper is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Exploits allow remote attackers to execute arbitrary machine code in the context of the application. Failed exploit attempts will likely crash the application, denying service to legitimate users. IntelliTamper 2.07 and 2.08 are vulnerable; other versions may also be affected.
Affected Products
- IntelliTamper 2.07
- IntelliTamper 2.08
References
- BugTraq: 37912