The is_asn1 function in strongSwan 4.1.11 through 5.0.4 does not properly validate the return value of the asn1_length function, which allows remote attackers to cause a denial of service (segmentation fault) via a (1) XAuth username, (2) EAP identity, or (3) PEM encoded file that starts with a 0x04, 0x30, or 0x31 character followed by an ASN.1 length value that triggers an integer overflow.
Advisories
Source ID Title
EUVD EUVD EUVD-2013-4860 The is_asn1 function in strongSwan 4.1.11 through 5.0.4 does not properly validate the return value of the asn1_length function, which allows remote attackers to cause a denial of service (segmentation fault) via a (1) XAuth username, (2) EAP identity, or (3) PEM encoded file that starts with a 0x04, 0x30, or 0x31 character followed by an ASN.1 length value that triggers an integer overflow.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-06T16:59:41.283Z

Reserved: 2013-07-30T00:00:00

Link: CVE-2013-5018

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2013-08-28T23:55:10.650

Modified: 2025-04-11T00:51:21.963

Link: CVE-2013-5018

cve-icon Redhat

Severity : Moderate

Publid Date: 2013-08-01T00:00:00Z

Links: CVE-2013-5018 - Bugzilla

cve-icon OpenCVE Enrichment

No data.