Vulnerability   
Search   
    Search 191973 CVE descriptions
and 86218 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.702664
Category:Debian Local Security Checks
Title:Debian Security Advisory DSA 2664-1 (stunnel4 - buffer overflow)
Summary:Stunnel, a program designed to work as an universal SSL tunnel for;network daemons, is prone to a buffer overflow vulnerability when using;the Microsoft NT LAN Manager (NTLM) authentication;(protocolAuthentication = NTLM) together with the connect protocol method (protocol = connect). With these prerequisites;and using stunnel4 in SSL client mode (client = yes;) on a 64 bit;host, an attacker could possibly execute arbitrary code with the;privileges of the stunnel process, if the attacker can either control;the specified proxy server or perform man-in-the-middle attacks on the;tcp session between stunnel and the proxy sever.;;Note that for the testing distribution (wheezy) and the unstable;distribution (sid), stunnel4 is compiled with stack smashing protection;enabled, which should help protect against arbitrary code execution.
Description:Summary:
Stunnel, a program designed to work as an universal SSL tunnel for
network daemons, is prone to a buffer overflow vulnerability when using
the Microsoft NT LAN Manager (NTLM) authentication
(protocolAuthentication = NTLM) together with the connect protocol method (protocol = connect). With these prerequisites
and using stunnel4 in SSL client mode (client = yes
) on a 64 bit
host, an attacker could possibly execute arbitrary code with the
privileges of the stunnel process, if the attacker can either control
the specified proxy server or perform man-in-the-middle attacks on the
tcp session between stunnel and the proxy sever.

Note that for the testing distribution (wheezy) and the unstable
distribution (sid), stunnel4 is compiled with stack smashing protection
enabled, which should help protect against arbitrary code execution.

Affected Software/OS:
stunnel4 on Debian Linux

Solution:
For the stable distribution (squeeze), this problem has been fixed in
version 3:4.29-1+squeeze1.

For the testing distribution (wheezy), this problem has been fixed in
version 3:4.53-1.1.

For the unstable distribution (sid), this problem has been fixed in
version 3:4.53-1.1.

We recommend that you upgrade your stunnel4 packages.

CVSS Score:
6.6

CVSS Vector:
AV:N/AC:H/Au:N/C:P/I:P/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2013-1762
Debian Security Information: DSA-2664 (Google Search)
http://www.debian.org/security/2013/dsa-2664
http://www.mandriva.com/security/advisories?name=MDVSA-2013:130
RedHat Security Advisories: RHSA-2013:0714
http://rhn.redhat.com/errata/RHSA-2013-0714.html
CopyrightCopyright (C) 2013 Greenbone Networks GmbH http://greenbone.net

This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.