A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.
Weakness
The product performs a calculation to determine how much memory to allocate, but an integer overflow can occur that causes less memory to be allocated than expected, leading to a buffer overflow.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Gsoap | Genivia | 2.8.107 (including) | 2.8.107 (including) |
| Gsoap | Ubuntu | bionic | * |
| Gsoap | Ubuntu | focal | * |
| Gsoap | Ubuntu | groovy | * |
| Gsoap | Ubuntu | hirsute | * |
| Gsoap | Ubuntu | impish | * |
| Gsoap | Ubuntu | kinetic | * |
| Gsoap | Ubuntu | lunar | * |
| Gsoap | Ubuntu | mantic | * |
| Gsoap | Ubuntu | oracular | * |
| Gsoap | Ubuntu | plucky | * |
| Gsoap | Ubuntu | trusty | * |
| Gsoap | Ubuntu | xenial | * |
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/10.html
- https://cwe.mitre.org/data/definitions/100.html
- https://cwe.mitre.org/data/definitions/14.html
- https://cwe.mitre.org/data/definitions/24.html
- https://cwe.mitre.org/data/definitions/45.html
- https://cwe.mitre.org/data/definitions/46.html
- https://cwe.mitre.org/data/definitions/47.html
- https://cwe.mitre.org/data/definitions/67.html
- https://cwe.mitre.org/data/definitions/8.html
- https://cwe.mitre.org/data/definitions/9.html
- https://cwe.mitre.org/data/definitions/92.html
References
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1245
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://www.oracle.com/security-alerts/cpuoct2021.html
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1245
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://www.oracle.com/security-alerts/cpuoct2021.html