Update Protection against Sun Java System Web Server WEBDAV Stack Buffer Overflow Vulnerability
| Check Point Reference: | CPAI-2010-106 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Secunia Advisory SA38260 | |
| Industry Reference(s): | CVE-2010-0361 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Sun Microsystems Java System Web Server 7.0 prior to 7.0 update 8 | ||
| Vulnerability Description A buffer overflow vulnerability was reported in Sun Java System Web Server. Sun Microsystems' Java System Web Server is a web server for medium to large business applications.The vulnerability is due to a boundary error when processing crafted WEBDAV requests. A remote unauthenticated attacker can exploit this vulnerability by sending a crafted HTTP request to a target server. Successful exploitation could result in injection and execution of arbitrary code in the security context of the affected process. |
||
|
Update/Patch Available The vendor, Sun, has released a patch. |
|
|
Vulnerability Details The vulnerability exists in the Sun Java System Web Server WebDAV implementation. Specifically, the vulnerability is due to insufficient boundary checks when handling specially crafted Request-Lines in a WebDAV request. Remote unauthenticated attackers can exploit this vulnerability by sending a WebDAV request, potentially causing remote code execution on the target system. |
Protection Overview
This protection will detect and block HTTP requests using Webdav request methods whose URL is longer than a certain threshold.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, Protection taband select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.