APP: Netatalk dsi_writeinit Heap Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Netatalk. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the Netatalk.
Extended Description
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dsi_writeinit function. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-17646.
Affected Products
Netatalk netatalk
Short Name
APP:NETATALK-HEAP-OVERFL
Severity
Major
Recommended
False
Recommended Action
None
Category
APP
Keywords
Buffer CVE-2022-43634 Heap Netatalk Overflow dsi_writeinit
Release Date
04/07/2023
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
Sigpack Version
3638
False Positive
Rarely
Vendors
Netatalk