Signature Detail
Short Name |
HTTP:STC:DL:ESIGNAL-MUL-FILE-OF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
eSignal Multiple files Buffer Overflow |
Release Date |
2012/01/04 |
Update Number |
2058 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: eSignal Multiple files Buffer Overflow
This signature detects attempts to exploit a known code execution vulnerability in multiple files in the eSignal. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
eSignal is prone to multiple remote buffer-overflow vulnerabilities because of errors when processing certain files. Remote attackers can exploit these issues by enticing an unsuspecting user into opening maliciously craftedfile. Successful exploits will allow attackers to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely result in a denial of service. eSignal 10.6.2425.1208 is vulnerable; other versions may also be affected.
Affected Products
- eSignal 10.6.2425.1208
References
- BugTraq: 49600
- CVE: CVE-2011-3494