sblim-sfcb "Content-Length" Remote Heap Overflow Vulnerabilities


Description   Two vulnerabilities have been identified in sblim-sfcb, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system. These issues are caused by heap and integer overflow errors when processing malformed "Content-Length" headers, which could be exploited by attackers to crash an affected server or execute arbitrary code.
     
Vulnerable Products   Vulnerable Software:
sblim-sfcb versions prior to 1.3.8
     
Solution   Upgrade to sblim-sfcb version 1.3.8 : http://sourceforge.net/apps/mediawiki/sblim/index.php?title=Sfcb
     
CVE   CVE-2010-2054
CVE-2010-1937
     
References   http://seclists.org/oss-sec/2010/q2/att-244/SFCB-Content_Length_heap_overflows.txt
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
Invalid HTTP protocol
3.2.0
     


 
 
 
 
 Risk level 
Critical 

 Vulnerability First Public Report Date 
2010-06-02 

 Target Type 
Server 

 Possible exploit 
Local & Remote