Signature Detail
Short Name |
APP:SVN-PROTOCOL-STRING-OF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Subversion Protocol String Parsing |
Release Date |
2013/07/09 |
Update Number |
2280 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: Subversion Protocol String Parsing
This signature detects attempts to exploit a known vulnerability against SVN SubVersion server. A successful attack allows the attacker to execute arbitrary code within the context of the server.
Extended Description
It is reported that Subversion is prone to a remote integer overrun vulnerability. The issue exists in the svn protocol parser and is due to a lack of sufficient bounds checking performed on svn URI strings that are transmitted by the client. If the URI string recieved is long enough an integer overrun may occur where the size value of the URI string will wrap and be misrepresented. This may potentially result in corruption of heap memory management structures.
Affected Products
- OpenPKG 2.0.0
- OpenPKG Current
- Subversion 0.27.0
- Subversion 1.0.0
- Subversion 1.0.1
- Subversion 1.0.2
- Subversion 1.0.3
- Subversion 1.0.4
References
- BugTraq: 10519
- CVE: CVE-2004-0413