CVE-2017-9765
Last modified
CVE-2017-9765 is a vulnerability of currently unknown severity. Integer overflow in the soap_get function in Genivia gSOAP 2.7.x and 2.8.x before 2.8.48, as used on Axis cameras and other devices, allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow and application crash) via a large XML document, aka Devil's Ivy. NOTE: the large document would be blocked by many common web-server configurations on general-purpose computers.. EPSS estimates a 21.89% chance of exploitation in the next 30 days.
Description
Integer overflow in the soap_get function in Genivia gSOAP 2.7.x and 2.8.x before 2.8.48, as used on Axis cameras and other devices, allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow and application crash) via a large XML document, aka Devil's Ivy. NOTE: the large document would be blocked by many common web-server configurations on general-purpose computers.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Genivia | Gsoap | 2.7.0 |
| Genivia | Gsoap | 2.7.1 |
| Genivia | Gsoap | 2.7.2 |
| Genivia | Gsoap | 2.7.3 |
| Genivia | Gsoap | 2.7.4 |
| Genivia | Gsoap | 2.7.5 |
| Genivia | Gsoap | 2.7.6 |
| Genivia | Gsoap | 2.7.7 |
| Genivia | Gsoap | 2.7.8 |
| Genivia | Gsoap | 2.7.9 |
| Genivia | Gsoap | 2.7.10 |
| Genivia | Gsoap | 2.7.11 |
| Genivia | Gsoap | 2.7.12 |
| Genivia | Gsoap | 2.7.13 |
| Genivia | Gsoap | 2.7.14 |
| Genivia | Gsoap | 2.7.15 |
| Genivia | Gsoap | 2.7.16 |
| Genivia | Gsoap | 2.7.17 |
| Genivia | Gsoap | 2.8.0 |
| Genivia | Gsoap | 2.8.1 |
| Genivia | Gsoap | 2.8.2 |
| Genivia | Gsoap | 2.8.3 |
| Genivia | Gsoap | 2.8.4 |
| Genivia | Gsoap | 2.8.5 |
| Genivia | Gsoap | 2.8.6 |
| Genivia | Gsoap | 2.8.7 |
| Genivia | Gsoap | 2.8.8 |
| Genivia | Gsoap | 2.8.9 |
| Genivia | Gsoap | 2.8.10 |
| Genivia | Gsoap | 2.8.11 |
| Genivia | Gsoap | 2.8.12 |
| Genivia | Gsoap | 2.8.13 |
| Genivia | Gsoap | 2.8.14 |
| Genivia | Gsoap | 2.8.15 |
| Genivia | Gsoap | 2.8.16 |
| Genivia | Gsoap | 2.8.17 |
| Genivia | Gsoap | 2.8.18 |
| Genivia | Gsoap | 2.8.19 |
| Genivia | Gsoap | 2.8.20 |
| Genivia | Gsoap | 2.8.21 |
| Genivia | Gsoap | 2.8.22 |
| Genivia | Gsoap | 2.8.23 |
| Genivia | Gsoap | 2.8.24 |
| Genivia | Gsoap | 2.8.25 |
| Genivia | Gsoap | 2.8.26 |
| Genivia | Gsoap | 2.8.27 |
| Genivia | Gsoap | 2.8.28 |
| Genivia | Gsoap | 2.8.29 |
| Genivia | Gsoap | 2.8.30 |
| Genivia | Gsoap | 2.8.31 |
Showing 50 of 66 affected configurations. See NVD for the full list.
References
- http://blog.senr.io/blog/devils-ivy-flaw-in-widely-used-third-party-code-impacts-millionsMitigation, Technical Description, Third Party Advisory
- http://blog.senr.io/devilsivy.htmlExploit, Technical Description, Third Party Advisory
- http://www.securityfocus.com/bid/99868Third Party Advisory, VDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=1472807Issue Tracking, Third Party Advisory, VDB Entry
- https://bugzilla.suse.com/show_bug.cgi?id=1049348Issue Tracking, Third Party Advisory, VDB Entry
- https://www.genivia.com/changelog.html#Version_2.8.48_upd_%2806/21/2017%29Release Notes, Vendor Advisory
- http://blog.senr.io/blog/devils-ivy-flaw-in-widely-used-third-party-code-impacts-millionsMitigation, Technical Description, Third Party Advisory
- http://blog.senr.io/devilsivy.htmlExploit, Technical Description, Third Party Advisory
- http://www.securityfocus.com/bid/99868Third Party Advisory, VDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=1472807Issue Tracking, Third Party Advisory, VDB Entry
- https://bugzilla.suse.com/show_bug.cgi?id=1049348Issue Tracking, Third Party Advisory, VDB Entry
- https://www.genivia.com/changelog.html#Version_2.8.48_upd_%2806/21/2017%29Release Notes, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-9765?
How severe is CVE-2017-9765?
How do I fix CVE-2017-9765?
Are you affected by CVE-2017-9765?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST