Other official information and services: www.belgium.be

Critical vulnerability fixed in SNIProxy

Referentie:

Advisory #2023-039

Versie:

1.0

Geïmpacteerde software:

SNIProxy version 0.6.0 and earlier

Type:

Buffer Overflow

CVE/CVSS:

CVE-2023-25076

Datum:

11/04/2023

Bronnen

Talos Intelligence - https://talosintelligence.com/vulnerability_reports/TALOS-2023-1731

Risico’s

If your SNIProxy configuration contains wildcards, an attacker can use a buffer overflow vulnerability to achieve arbitrary code execution or a denial of service.

Beschrijving

When HTTP, TLS, or DTLS packages are handled by the wildcard backend, a malicious packet can trigger a buffer copy without checking the size of the input (CWE-120 Classic Buffer Overflow).

Aanbevolen acties

The Centre for Cybersecurity Belgium recommends system administrators to patch vulnerable systems as soon as possible and to analyse system and network logs for any suspicious activity.

Update the installation to the latest version:

* Version 0.6.1 or newer

Referenties

SNIProxy Patch - https://github.com/dlundquist/sniproxy/commit/f8d9a433fe22ab2fa15c001790...