CVE-2017-9765

Published: 20/07/2017 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.1 | Impact Score: 5.9 | Exploitability Score: 2.2

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Integer overflow in the soap_get function in Genivia gSOAP 2.7.x and 2.8.x prior to 2.8.48, as used on Axis cameras and other devices, allows remote malicious users to execute arbitrary code or cause a denial of service (stack-based buffer overflow and application crash) via a large XML document, aka Devil's Ivy. NOTE: the large document would be blocked by many common web-server configurations on general-purpose computers.

Vulnerable Product	Search on Vulmon	Subscribe to Product
genivia gsoap 2.8.46
genivia gsoap 2.8.13
genivia gsoap 2.7.7
genivia gsoap 2.8.29
genivia gsoap 2.8.39
genivia gsoap 2.8.14
genivia gsoap 2.8.11
genivia gsoap 2.8.2
genivia gsoap 2.8.19
genivia gsoap 2.8.5
genivia gsoap 2.8.17
genivia gsoap 2.7.13
genivia gsoap 2.8.21
genivia gsoap 2.8.47
genivia gsoap 2.8.4
genivia gsoap 2.7.10
genivia gsoap 2.8.33
genivia gsoap 2.8.38
genivia gsoap 2.8.1
genivia gsoap 2.7.14
genivia gsoap 2.7.6
genivia gsoap 2.8.31
genivia gsoap 2.8.40
genivia gsoap 2.7.2
genivia gsoap 2.8.8
genivia gsoap 2.7.9
genivia gsoap 2.8.20
genivia gsoap 2.8.27
genivia gsoap 2.7.15
genivia gsoap 2.7.3
genivia gsoap 2.8.0
genivia gsoap 2.8.10
genivia gsoap 2.8.26
genivia gsoap 2.8.41
genivia gsoap 2.8.30
genivia gsoap 2.8.24
genivia gsoap 2.8.16
genivia gsoap 2.8.36
genivia gsoap 2.8.43
genivia gsoap 2.7.11
genivia gsoap 2.8.25
genivia gsoap 2.7.8
genivia gsoap 2.7.4
genivia gsoap 2.8.35
genivia gsoap 2.8.7
genivia gsoap 2.8.45
genivia gsoap 2.7.1
genivia gsoap 2.8.15
genivia gsoap 2.8.37
genivia gsoap 2.7.12
genivia gsoap 2.8.18
genivia gsoap 2.7.5
genivia gsoap 2.8.9
genivia gsoap 2.8.44
genivia gsoap 2.7.16
genivia gsoap 2.8.34
genivia gsoap 2.8.42
genivia gsoap 2.8.28
genivia gsoap 2.8.12
genivia gsoap 2.7.0
genivia gsoap 2.8.6
genivia gsoap 2.7.17
genivia gsoap 2.8.22
genivia gsoap 2.8.3
genivia gsoap 2.8.23
genivia gsoap 2.8.32

Integer overflow in SOAP (Simple Object Access Protocol) function in Genivia gSOAP allows execution of arbitrary code or denial of service, aka Devil’s Ivy attack ...

Collections of patterns for weggli to find nice bugs

weggli-patterns Collections of patterns for weggli to find nice bugs find strcpy-like/memcpy calls with static arrays weggli -R 'func=^str*cpy$' '{char $b[_]; $func($b, _);}' source static char buf[256]; if ( var1 && obj->a ) { d = obj->a(obj->h); if ( e < 300 ) strcpy(someot

CWE-190 https://www.genivia.com/changelog.html#Version_2.8.48_upd_%2806/21/2017%29 https://bugzilla.suse.com/show_bug.cgi?id=1049348 https://bugzilla.redhat.com/show_bug.cgi?id=1472807 http://blog.senr.io/devilsivy.html http://blog.senr.io/blog/devils-ivy-flaw-in-widely-used-third-party-code-impacts-millions http://www.securityfocus.com/bid/99868 https://www.genivia.com/advisory.html#Security_advisory:_CVE-2017-9765_bug_in_certain_versions_of_gSOAP_2.7_up_to_2.8.47_%28June_21%2C_2017%29 https://nvd.nist.gov https://github.com/plowsec/weggli-patterns https://support.hp.com//us-en/document/c05704368

CVE-2017-9765

Vulnerability Summary

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect