Signature Detail
Short Name |
APP:IBM:SYMPHONY-SOAP-BOF |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
IBM Platform Symphony SOAP Requests Processing Buffer Overflow |
Release Date |
2014/02/24 |
Update Number |
2348 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: IBM Platform Symphony SOAP Requests Processing Buffer Overflow
This signature detects attempts to exploit a known vulnerability in IBM Platform Symphony. The vulnerability is due to the way the product processes SOAP requests. A remote unauthenticated attacker can leverage this vulnerability by sending crafted SOAP requests to the server. A successful attack will result in a denial of service condition.
Extended Description
Buffer overflow in IBM Platform Symphony 5.2, 6.1, and 6.1.1 allows remote attackers to cause a denial of service (process crash or hang) via a malformed SOAP request with a large amount of request data.
Affected Products
- ibm platform_symphony 5.2
- ibm platform_symphony 6.1
- ibm platform_symphony 6.1.1
References
- BugTraq: 63517
- CVE: CVE-2013-5387