Signature Detail
Short Name |
POP3:OVERFLOW:CURL-LIBCURL-BO |
|---|---|
Severity |
High |
Recommended |
No |
Category |
POP3 |
Keywords |
cURL and libcurl MD5 Digest Buffer Overflow |
Release Date |
2013/05/23 |
Update Number |
2267 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
POP3: cURL and libcurl MD5 Digest Buffer Overflow
This signature detects attempts to exploit a known vulnerability in cURL and libcurl. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
Stack-based buffer overflow in the Curl_sasl_create_digest_md5_message function in lib/curl_sasl.c in curl and libcurl 7.26.0 through 7.28.1, when negotiating SASL DIGEST-MD5 authentication, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the realm parameter in a (1) POP3, (2) SMTP or (3) IMAP message.
Affected Products
- haxx curl 7.26.0
- haxx curl 7.27.0
- haxx curl 7.28.0
- haxx curl 7.28.1
- haxx libcurl 7.26.0
- haxx libcurl 7.27.0
- haxx libcurl 7.28.0
- haxx libcurl 7.28.1
- ubuntu 12.10
References
- CVE: CVE-2013-0249