DeleGate SSLway filter buffer overflow
| delegate-sslway-bo (16078) |  High Risk |
Description:
DeleGate is vulnerable to a buffer overflow in the SSLway filter (sslway.c). By creating a specially-crafted SSL certificate, a remote attacker could overflow a buffer and execute arbitrary code on the victim's system.
Consequences:
Gain Access
Remedy:
Upgrade to the latest version of DeleGate (8.9.3 or later), available from DeleGate Web site. See References.
References:
- DeleGate Web site: DeleGate Home Page (www.delegate.org).
- Full-Disclosure Mailing List, Thu May 06 2004 - 06:35:41 CDT: [0xbadc0ded #03] DeleGate (SSL-filter) <= 8.9.2.
- BID-10295: DeleGate SSLway Filter Remote Stack Based Buffer Overflow Vulnerability
- CVE-2004-2003: Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field.
- OSVDB ID: 5945: DeleGate SSLway ssl_prcert Overflow
- SA11569: DeleGate SSLway Filter Buffer Overflow Vulnerability
Platforms Affected:
- DeleGate DeleGate 8.9.2 and prior
Reported:
May 06, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net