cadaver libneon Date Parsing Overflow

2004-05-19T00:00:00
ID OSVDB:6302
Type osvdb
Reporter Stefan Esser(sesser@hardened-php.net)
Modified 2004-05-19T00:00:00

Description

Vulnerability Description

A remote overflow exists in cadaver. The issue is triggered due to improper bounds checking of the neon ne_rfc1036_parse library, resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution, resulting in a loss of integrity.

Solution Description

Upgrade to version 0.24.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in cadaver. The issue is triggered due to improper bounds checking of the neon ne_rfc1036_parse library, resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution, resulting in a loss of integrity.

References:

Vendor URL: http://www.webdav.org/neon/ Vendor Specific News/Changelog Entry: http://www.webdav.org/cadaver/NEWS Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Secunia Advisory ID:11665 Secunia Advisory ID:11654 Secunia Advisory ID:11785 Secunia Advisory ID:11673 Secunia Advisory ID:11650 Secunia Advisory ID:11702 Secunia Advisory ID:11660 Secunia Advisory ID:11672 Secunia Advisory ID:11745 Secunia Advisory ID:11643 Secunia Advisory ID:11657 Secunia Advisory ID:11648 Secunia Advisory ID:11786 Other Advisory URL: http://security.e-matters.de/advisories/062004.html Nessus Plugin ID:14499 Nessus Plugin ID:12496 Nessus Plugin ID:14148 Nessus Plugin ID:14501 Nessus Plugin ID:13704 Nessus Plugin ID:13705 Nessus Plugin ID:12586 CVE-2004-0398 CIAC Advisory: o-148